SBR Carrier: A vulnerability in the identity and access management certificate generation procedure allows a local attacker to gain access to confidential information.
CVE-2019-0072

5.6MEDIUM

Key Information:

Vendor: Juniper Networks
Status: Sbr Carrier
Vendor: CVE Published:; 9 October 2019

Badges

👾 Exploit Exists

Summary

An Unprotected Storage of Credentials vulnerability in the identity and access management certificate generation procedure allows a local attacker to gain access to confidential information. This issue affects: Juniper Networks SBR Carrier: 8.4.1 versions prior to 8.4.1R13; 8.5.0 versions prior to 8.5.0R4.

Affected Version(s)

SBR Carrier 8.4.1 < 8.4.1R13

SBR Carrier 8.5.0 < 8.5.0R4

References

https://kb.juniper.net/JSA10971

x_refsource_MISC

CVSS V3.1

Score:

5.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

👾
Exploit known to exist
Aug 4, 2024
Vulnerability published
Oct 9, 2019
Vulnerability Reserved
Oct 11, 2018