CyberSec.Space Logo
返回 CVE 浏览器

CVE-2014-3413

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1610%
EPSS Percentile42.39th
Published2018年4月5日
Last Modified2024年11月21日

Vulnerability Description

The MySQL server in Juniper Networks Junos Space before 13.3R1.8 has an unspecified account with a hardcoded password, which allows remote attackers to obtain sensitive information and consequently obtain administrative control by leveraging database access.

Affected Platforms (CPE)

📦
Juniper

Junos Space

= 13.3
📦
Juniper

Junos Space

= 13.3
📦
Juniper

Junos Space

= 13.3
📦
Juniper

Junos Space

= 13.3
📦
Juniper

Junos Space

= 13.3
📦
Juniper

Junos Space

= 13.3
📦
Juniper

Junos Space

= 13.3

References & Advisories

🔗 https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10627
🔗 https://www.tenable.com/security/research/tra-2014-01
🔗 https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10627
🔗 https://www.tenable.com/security/research/tra-2014-01

相关漏洞威胁

CVE-2014-341210.0

Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execut...

CVE-2016-12659.8

A remote unauthenticated network based attacker with access to Junos Space may execute arbitrary code on Junos Space or gain acces...

CVE-2016-49269.8

Insufficient authentication vulnerability in Junos Space before 15.2R2 allows remote network based users with access to Junos Spac...

CVE-2017-106229.8

An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthentica...