Junos Space: Insufficient verification of node certificates.
CVE-2017-10624

7.5HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Space
Vendor: CVE Published:; 13 October 2017

Summary

Insufficient verification of node certificates in Juniper Networks Junos Space may allow a man-in-the-middle type of attacker to make unauthorized modifications to Space database or add nodes. Affected releases are Juniper Networks Junos Space all versions prior to 17.1R1.

Affected Version(s)

Junos Space versions prior to 17.1R1

References

https://kb.juniper.net/JSA10826

x_refsource_CONFIRM

http://www.securityfocus.com/bid/101255

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Oct 13, 2017
Vulnerability Reserved
Jun 28, 2017

Collectors

NVD DatabaseMitre Database