CyberSec.Space Logo
Back to CVE Browser

CVE-2016-1265

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0320%
EPSS Percentile19.46th
PublishedOct 13, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

A remote unauthenticated network based attacker with access to Junos Space may execute arbitrary code on Junos Space or gain access to devices managed by Junos Space using cross site request forgery (CSRF), default authentication credentials, information leak and command injection attack vectors. All versions of Juniper Networks Junos Space prior to 15.1R3 are affected.

Affected Platforms (CPE)

📦
Juniper

Junos Space

<= 15.1r2

References & Advisories

🔗 https://kb.juniper.net/JSA10727
🔗 https://kb.juniper.net/JSA10727

Related Vulnerabilities

CVE-2014-341210.0

Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execut...

CVE-2014-34139.8

The MySQL server in Juniper Networks Junos Space before 13.3R1.8 has an unspecified account with a hardcoded password, which allow...

CVE-2016-49269.8

Insufficient authentication vulnerability in Junos Space before 15.2R2 allows remote network based users with access to Junos Spac...

CVE-2017-106229.8

An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthentica...