Multiple vulnerabilities in Juniper Junos Space
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2018-0012 CVE-2018-0001 |
| CWE-ID | CWE-264 CWE-416 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Juniper Junos Space Server applications / Remote management servers, RDP, SSH |
| Vendor | Juniper Networks, Inc. |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Privilege escalation
EUVDB-ID: #VU10450
Risk: Low
CVSSv4.0: 6.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2018-0012
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists due to unspecified flaw. A local attacker can gain elevated privileges.
Install update from vendor's website.
Vulnerable software versionsJuniper Junos Space: 16.1 - 17.2
CPE2.3- cpe:2.3:a:juniper_networks:juniper_junos_space:16.1:*:*:*:*:*:*:*
- cpe:2.3:a:juniper_networks:juniper_junos_space:16.2:*:*:*:*:*:*:*
- cpe:2.3:a:juniper_networks:juniper_junos_space:17.1:*:*:*:*:*:*:*
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10838
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
The attacker would have to login to the system and perform certain actions in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Memory corruption
EUVDB-ID: #VU10452
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2018-0001
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a use-after-free error. A remote attacker can submit specially crafted data, trigger memory corruption and execute arbitrary code with elevated privileges.
Install update from vendor's website.
Vulnerable software versionsJuniper Junos Space: 12.1r - 15.1X53
CPE2.3- cpe:2.3:a:juniper_networks:juniper_junos_space:12.1r:*:*:*:*:*:*:*
- cpe:2.3:a:juniper_networks:juniper_junos_space:12.1x44:*:*:*:*:*:*:*
- cpe:2.3:a:juniper_networks:juniper_junos_space:12.1x45:*:*:*:*:*:*:*
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10828
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
