← back
CVE-2019-0022

Juniper ATP: Two hard coded credentials sharing the same password give an attacker the ability to take control of any installation of the software.

CVSS 10 CRITICALEPSS 1.1%CWE-798
Juniper ATP ships with hard coded credentials in the Cyphort Core instance which gives an attacker the ability to take full control of any installation of the software. Affected releases are Juniper Networks Juniper ATP: 5.0 versions prior to 5.0.3.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected products
Juniper Networks · Juniper ATP

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://kb.juniper.net/JSA10918