Firewall Bypass Vulnerability in Juniper Networks NorthStar Controller Application
CVE-2017-2331

7.3HIGH

Key Information:

Vendor: Juniper Networks
Status: Northstar Controller Application
Vendor: CVE Published:; 24 April 2017

🔔 Create Juniper Networks Vulnerability Alert

What is CVE-2017-2331?

A significant vulnerability exists within the Juniper Networks NorthStar Controller Application, allowing unauthorized users to bypass established firewall policies. This may enable attackers to exploit the system for various malicious activities, including unauthorized access, modification of sensitive files, and disruption of services. Network security measures may be compromised as a result, making it critical for users to apply available updates promptly.

Affected Version(s)

NorthStar Controller Application prior to version 2.1.0 Service Pack 1

References

https://kb.juniper.net/JSA10783

x_refsource_CONFIRM

http://www.securityfocus.com/bid/97619

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 24, 2017
Vulnerability Reserved
Dec 1, 2016