Vulnerability in Juniper Networks NorthStar Controller Application
CVE-2017-2318

6.5MEDIUM

Key Information:

Vendor: Juniper Networks
Status: Northstar Controller Application
Vendor: CVE Published:; 24 April 2017

Summary

A flaw in the Juniper Networks NorthStar Controller Application before version 2.1.0 Service Pack 1 allows an authenticated user to access sensitive log files. This exposure can lead to the compromise of system integrity and may enable privilege escalation, posing a significant risk to the security of the system.

Affected Version(s)

NorthStar Controller Application prior to version 2.1.0 Service Pack 1

References

https://kb.juniper.net/JSA10783

x_refsource_CONFIRM

http://www.securityfocus.com/bid/97660

vdb-entryx_refsource_BID

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 24, 2017
Vulnerability Reserved
Dec 1, 2016