CyberSec.Space Logo
Back to CVE Browser

CVE-2014-3413

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1610%
EPSS Percentile42.39th
PublishedApr 5, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

The MySQL server in Juniper Networks Junos Space before 13.3R1.8 has an unspecified account with a hardcoded password, which allows remote attackers to obtain sensitive information and consequently obtain administrative control by leveraging database access.

Affected Platforms (CPE)

πŸ“¦
Juniper

Junos Space

= 13.3
πŸ“¦
Juniper

Junos Space

= 13.3
πŸ“¦
Juniper

Junos Space

= 13.3
πŸ“¦
Juniper

Junos Space

= 13.3
πŸ“¦
Juniper

Junos Space

= 13.3
πŸ“¦
Juniper

Junos Space

= 13.3
πŸ“¦
Juniper

Junos Space

= 13.3

References & Advisories

πŸ”— https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10627
πŸ”— https://www.tenable.com/security/research/tra-2014-01
πŸ”— https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10627
πŸ”— https://www.tenable.com/security/research/tra-2014-01

Related Vulnerabilities

CVE-2014-341210.0

Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execut...

CVE-2016-12659.8

A remote unauthenticated network based attacker with access to Junos Space may execute arbitrary code on Junos Space or gain acces...

CVE-2016-49269.8

Insufficient authentication vulnerability in Junos Space before 15.2R2 allows remote network based users with access to Junos Spac...

CVE-2017-106229.8

An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthentica...