Details of VAR-201705-3369

ID

VAR-201705-3369

CVE

CVE-2017-2305

TITLE

Juniper Networks Junos Space Vulnerable to privileged user creation

Trust: 0.8

sources: JVNDB: JVNDB-2017-004482

DESCRIPTION

On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can create privileged users, allowing privilege escalation. Juniper Junos Space is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Versions prior to Juniper Junos Space 16.1R1 are vulnerable. Juniper Networks Junos Space is a set of network management solutions of Juniper Networks (Juniper Networks). The solution supports automated configuration, monitoring, and troubleshooting of devices and services throughout their lifecycle

Trust: 1.98

sources: NVD: CVE-2017-2305 // JVNDB: JVNDB-2017-004482 // BID: 98759 // VULHUB: VHN-110508

AFFECTED PRODUCTS

vendor:	juniper	model:	junos space	scope:	lte	version:	16.1	Trust: 1.0
vendor:	juniper	model:	junos space	scope:	lt	version:	16.1r1	Trust: 0.8
vendor:	juniper	model:	junos space	scope:	eq	version:	16.1	Trust: 0.6
vendor:	juniper	model:	junos space	scope:	eq	version:	1.2.2	Trust: 0.3
vendor:	juniper	model:	junos space 15.2r2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 15.2r1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	15.2	Trust: 0.3
vendor:	juniper	model:	junos space 15.1r3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 15.1r2.11	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 15.1r2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 15.1r1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 15.1f3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 15.1f2	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 14.1r1.9	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 14.1r1	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 14.1.r3.4	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 13.3r4.4	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 13.3r1.9	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 13.3r1.8	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	13.3	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	13.1	Trust: 0.3
vendor:	juniper	model:	junos space 12.3r2.8	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 12.3r1.3	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space 12.3p2.8	scope:	-	version:	-	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	12.3	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	12.2	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	12.1	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	11.4	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	11.3	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	11.2	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	11.1	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	1.4	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	1.3	Trust: 0.3
vendor:	juniper	model:	junos space	scope:	eq	version:	1.0	Trust: 0.3
vendor:	juniper	model:	junos space 16.1r1	scope:	ne	version:	-	Trust: 0.3

sources: BID: 98759 // JVNDB: JVNDB-2017-004482 // CNNVD: CNNVD-201705-1354 // NVD: CVE-2017-2305

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-2305
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-2305
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201705-1354
value:	HIGH
Trust: 0.6
VULHUB:	VHN-110508
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-2305
severity:	MEDIUM
baseScore:	6.5
vectorString:	AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-110508
severity:	MEDIUM
baseScore:	6.5
vectorString:	AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-2305
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-110508 // JVNDB: JVNDB-2017-004482 // CNNVD: CNNVD-201705-1354 // NVD: CVE-2017-2305

PROBLEMTYPE DATA

problemtype:	CWE-863	Trust: 1.1
problemtype:	CWE-285	Trust: 0.9

sources: VULHUB: VHN-110508 // JVNDB: JVNDB-2017-004482 // NVD: CVE-2017-2305

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201705-1354

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201705-1354

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-004482

PATCH

title:	JSA10770	url:	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10770&actp=METADATA	Trust: 0.8
title:	Juniper Networks Junos Space Fixes for permission permissions and access control vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=70628	Trust: 0.6

sources: JVNDB: JVNDB-2017-004482 // CNNVD: CNNVD-201705-1354

EXTERNAL IDS

db:	NVD	id:	CVE-2017-2305	Trust: 2.8
db:	BID	id:	98759	Trust: 2.0
db:	JUNIPER	id:	JSA10770	Trust: 2.0
db:	JVNDB	id:	JVNDB-2017-004482	Trust: 0.8
db:	CNNVD	id:	CNNVD-201705-1354	Trust: 0.7
db:	VULHUB	id:	VHN-110508	Trust: 0.1

sources: VULHUB: VHN-110508 // BID: 98759 // JVNDB: JVNDB-2017-004482 // CNNVD: CNNVD-201705-1354 // NVD: CVE-2017-2305

REFERENCES

url:	http://www.securityfocus.com/bid/98759	Trust: 1.7
url:	https://kb.juniper.net/jsa10770	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2305	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-2305	Trust: 0.8
url:	http://www.juniper.net/	Trust: 0.3
url:	http://www.juniper.net/au/en/products-services/software/junos-platform/junos-space/	Trust: 0.3
url:	https://kb.juniper.net/infocenter/index?page=content&id=jsa10770&actp=metadata	Trust: 0.3

sources: VULHUB: VHN-110508 // BID: 98759 // JVNDB: JVNDB-2017-004482 // CNNVD: CNNVD-201705-1354 // NVD: CVE-2017-2305

CREDITS

The vendor reported this issue.

Trust: 0.3

sources: BID: 98759

SOURCES

db:	VULHUB	id:	VHN-110508
db:	BID	id:	98759
db:	JVNDB	id:	JVNDB-2017-004482
db:	CNNVD	id:	CNNVD-201705-1354
db:	NVD	id:	CVE-2017-2305

LAST UPDATE DATE

2024-11-23T20:32:57.729000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-110508	date:	2019-10-03T00:00:00
db:	BID	id:	98759	date:	2017-05-30T00:00:00
db:	JVNDB	id:	JVNDB-2017-004482	date:	2017-06-27T00:00:00
db:	CNNVD	id:	CNNVD-201705-1354	date:	2019-10-23T00:00:00
db:	NVD	id:	CVE-2017-2305	date:	2024-11-21T03:23:14.960

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-110508	date:	2017-05-30T00:00:00
db:	BID	id:	98759	date:	2017-05-30T00:00:00
db:	JVNDB	id:	JVNDB-2017-004482	date:	2017-06-27T00:00:00
db:	CNNVD	id:	CNNVD-201705-1354	date:	2017-05-31T00:00:00
db:	NVD	id:	CVE-2017-2305	date:	2017-05-30T14:29:00.880