Juniper J-Web Authentication Bypass Vulnerability (JSA10560)

Vulnerability Key Information Vulnerability ID: JSA10560 Published: 2013-04-05 - Updated: 2014-10-07 Affected Products: - This issue may affect all Junos devices equipped with J-Web. - No other Juniper Networks products or platforms are affected by this issue. Severity: - Critical - Score for reference only: 5.9 (AV:N/AC:L/Au:S/C:C/I:C/A:C) Problem: - An input validation vulnerability in J-Web may allow an authenticated user to execute arbitrary commands. This could enable users with lower privileges (e.g., read-only access) to gain full administrative access. The scope of this vulnerability is limited to users who possess valid, authenticated login credentials. - Juniper SIRT is not aware of any malicious exploitation of this vulnerability. Solution: - The following software versions have been updated to address this specific issue: 10.4R13, 11.4R7, 12.1R5, 12.1X44-D15, 12.1X44-D20, 12.1X45-D10, 12.2R3, 12.3R1, 12.3R6, 13.2X51-D25, 13.3R4, 14.1R3, 14.2R1, and all subsequent versions. - This issue is tracked as PR826518 and is visible on the Customer Support Web. - KB16765 - "In which releases are vulnerabilities fixed?" banner indicates fixes based on engineering and end-of-life support principles. Workaround: - Disable J-Web, or restrict access to trusted hosts only. Security Assessment: - Additional information on how Juniper Networks assesses vulnerabilities can be found in KB16446: "Common Vulnerability Scoring System (CVSS) and Juniper’s Security Advisories". Related Information: - KB16613: Details of the Juniper Networks SIRT Monthly Security Bulletin publication process. - KB16765: "In which releases are vulnerabilities fixed?". - KB16446: Common Vulnerability Scoring System (CVSS) and Juniper’s Security Advisories. - Report a Vulnerability - How to Contact Juniper Networks Security Incident Response Team. Sources: - The Juniper SIRT would like to acknowledge and thank Phil from Sense of Security Labs for reporting this vulnerability.

Goal Reached Thanks to every supporter — we hit 100%!

Juniper J-Web Authentication Bypass Vulnerability (JSA10560)