CVE-2019-0017 Information

Description

The Junos Space application which allows Device Image files to be uploaded has insufficient validity checking which may allow uploading of malicious images or scripts or other content types. Affected releases are Juniper Networks Junos Space versions prior to 18.3R1.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

https://kb.juniper.net/JSA10917

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

8.8