CVE-2014-6384 in Junosinfo

Zusammenfassung (Englisch)

Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D25, 12.1X47 before 12.1X47-D15, 12.3 before 12.3R9, 13.1 before 13.1R4-S3, 13.2 before 13.2R6, 13.3 before 13.3R5, 14.1 before 14.1R3, and 14.2 before 14.2R1 does not properly handle double quotes in authorization attributes in the TACACS+ configuration, which allows local users to bypass the security policy and execute commands via unspecified vectors.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservieren

11.09.2014

Veröffentlichung

16.01.2015

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

IDSchwachstelleCWEAusMasCVE
68630Juniper Junos TACACS+ erweiterte Rechte264UnbewiesenOffizieller FixCVE-2014-6384

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

ZurückÜbersichtWeiter

Interested in the pricing of exploits?

See the underground prices here!