CVE-2019-0022

Juniper ATP: Two hard coded credentials sharing the same password give an attacker the ability to take control of any installation of the software.

CVSS 10 CRITICALEPSS 1.1%CWE-798

Juniper ATP ships with hard coded credentials in the Cyphort Core instance which gives an attacker the ability to take full control of any installation of the software. Affected releases are Juniper Networks Juniper ATP: 5.0 versions prior to 5.0.3.

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Produtos afetados

Juniper Networks · Juniper ATP

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://kb.juniper.net/JSA10918