7.5

CVE-2021-0260

An improper authorization vulnerability in the Simple Network Management Protocol daemon (snmpd) service of Juniper Networks Junos OS leads an unauthenticated attacker being able to perform SNMP read actions, an Exposure of System Data to an Unauthorized Control Sphere, or write actions to OIDs that support write operations, against the device without authentication. This issue affects: Juniper Networks Junos OS: 17.2 version 17.2R1 and later versions; 17.3 versions prior to 17.3R3-S9; 17.4 versions prior to 17.4R2-S12, 17.4R3-S5; 18.1 versions prior to 18.1R3-S13; 18.2 versions prior to 18.2R3-S8; 18.3 versions prior to 18.3R3-S5; 18.4 versions prior to 18.4R1-S8, 18.4R2-S5, 18.4R3; 19.1 versions prior to 19.1R2; 19.2 versions prior to 19.2R1-S6, 19.2R2; 19.3 versions prior to 19.3R2. This issue does not affect Juniper Networks Junos OS versions prior to 17.2R1.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
JuniperJunos Version17.2 Updater1
JuniperJunos Version17.2 Updater1-s1
JuniperJunos Version17.2 Updater1-s2
JuniperJunos Version17.2 Updater1-s3
JuniperJunos Version17.2 Updater1-s4
JuniperJunos Version17.2 Updater1-s5
JuniperJunos Version17.2 Updater1-s6
JuniperJunos Version17.2 Updater1-s7
JuniperJunos Version17.2 Updater1-s8
JuniperJunos Version17.2 Updater2
JuniperJunos Version17.2 Updater2-s11
JuniperJunos Version17.2 Updater2-s4
JuniperJunos Version17.2 Updater2-s6
JuniperJunos Version17.2 Updater2-s7
JuniperJunos Version17.2 Updater3
JuniperJunos Version17.2 Updater3-s1
JuniperJunos Version17.2 Updater3-s2
JuniperJunos Version17.2 Updater3-s3
JuniperJunos Version17.3 Update-
JuniperJunos Version17.3 Updater1
JuniperJunos Version17.3 Updater1-s1
JuniperJunos Version17.3 Updater1-s4
JuniperJunos Version17.3 Updater2
JuniperJunos Version17.3 Updater2-s1
JuniperJunos Version17.3 Updater2-s2
JuniperJunos Version17.3 Updater2-s3
JuniperJunos Version17.3 Updater2-s4
JuniperJunos Version17.3 Updater2-s5
JuniperJunos Version17.3 Updater3
JuniperJunos Version17.3 Updater3 Edition-
JuniperJunos Version17.3 Updater3-s1
JuniperJunos Version17.3 Updater3-s10
JuniperJunos Version17.3 Updater3-s2
JuniperJunos Version17.3 Updater3-s3
JuniperJunos Version17.3 Updater3-s4
JuniperJunos Version17.3 Updater3-s5
JuniperJunos Version17.3 Updater3-s6
JuniperJunos Version17.3 Updater3-s7
JuniperJunos Version17.3 Updater3-s8
JuniperJunos Version17.4 Update-
JuniperJunos Version17.4 Updater1
JuniperJunos Version17.4 Updater1-s1
JuniperJunos Version17.4 Updater1-s2
JuniperJunos Version17.4 Updater1-s3
JuniperJunos Version17.4 Updater1-s4
JuniperJunos Version17.4 Updater1-s5
JuniperJunos Version17.4 Updater1-s6
JuniperJunos Version17.4 Updater1-s7
JuniperJunos Version17.4 Updater2
JuniperJunos Version17.4 Updater2-s1
JuniperJunos Version17.4 Updater2-s10
JuniperJunos Version17.4 Updater2-s11
JuniperJunos Version17.4 Updater2-s2
JuniperJunos Version17.4 Updater2-s3
JuniperJunos Version17.4 Updater2-s4
JuniperJunos Version17.4 Updater2-s5
JuniperJunos Version17.4 Updater2-s6
JuniperJunos Version17.4 Updater2-s7
JuniperJunos Version17.4 Updater2-s8
JuniperJunos Version17.4 Updater2-s9
JuniperJunos Version17.4 Updater3
JuniperJunos Version17.4 Updater3-s1
JuniperJunos Version17.4 Updater3-s2
JuniperJunos Version17.4 Updater3-s3
JuniperJunos Version17.4 Updater3-s4
JuniperJunos Version18.1 Update-
JuniperJunos Version18.1 Updater1
JuniperJunos Version18.1 Updater2
JuniperJunos Version18.1 Updater2-s1
JuniperJunos Version18.1 Updater2-s2
JuniperJunos Version18.1 Updater2-s4
JuniperJunos Version18.1 Updater3
JuniperJunos Version18.1 Updater3-s1
JuniperJunos Version18.1 Updater3-s10
JuniperJunos Version18.1 Updater3-s11
JuniperJunos Version18.1 Updater3-s12
JuniperJunos Version18.1 Updater3-s2
JuniperJunos Version18.1 Updater3-s3
JuniperJunos Version18.1 Updater3-s4
JuniperJunos Version18.1 Updater3-s5
JuniperJunos Version18.1 Updater3-s6
JuniperJunos Version18.1 Updater3-s7
JuniperJunos Version18.1 Updater3-s8
JuniperJunos Version18.1 Updater3-s9
JuniperJunos Version18.2 Update-
JuniperJunos Version18.2 Updater1
JuniperJunos Version18.2 Updater1 Edition-
JuniperJunos Version18.2 Updater1-s2
JuniperJunos Version18.2 Updater1-s3
JuniperJunos Version18.2 Updater1-s4
JuniperJunos Version18.2 Updater1-s5
JuniperJunos Version18.2 Updater2
JuniperJunos Version18.2 Updater2-s1
JuniperJunos Version18.2 Updater2-s2
JuniperJunos Version18.2 Updater2-s3
JuniperJunos Version18.2 Updater2-s4
JuniperJunos Version18.2 Updater2-s5
JuniperJunos Version18.2 Updater2-s6
JuniperJunos Version18.2 Updater2-s7
JuniperJunos Version18.2 Updater3
JuniperJunos Version18.2 Updater3-s1
JuniperJunos Version18.2 Updater3-s2
JuniperJunos Version18.2 Updater3-s3
JuniperJunos Version18.2 Updater3-s4
JuniperJunos Version18.2 Updater3-s5
JuniperJunos Version18.2 Updater3-s6
JuniperJunos Version18.2 Updater3-s7
JuniperJunos Version18.3 Update-
JuniperJunos Version18.3 Updater1
JuniperJunos Version18.3 Updater1-s1
JuniperJunos Version18.3 Updater1-s2
JuniperJunos Version18.3 Updater1-s3
JuniperJunos Version18.3 Updater1-s4
JuniperJunos Version18.3 Updater1-s5
JuniperJunos Version18.3 Updater1-s6
JuniperJunos Version18.3 Updater2
JuniperJunos Version18.3 Updater2-s1
JuniperJunos Version18.3 Updater2-s2
JuniperJunos Version18.3 Updater2-s3
JuniperJunos Version18.3 Updater2-s4
JuniperJunos Version18.3 Updater3
JuniperJunos Version18.3 Updater3-s1
JuniperJunos Version18.3 Updater3-s2
JuniperJunos Version18.3 Updater3-s3
JuniperJunos Version18.3 Updater3-s4
JuniperJunos Version18.4 Update-
JuniperJunos Version18.4 Updater1
JuniperJunos Version18.4 Updater1-s1
JuniperJunos Version18.4 Updater1-s2
JuniperJunos Version18.4 Updater1-s3
JuniperJunos Version18.4 Updater1-s4
JuniperJunos Version18.4 Updater1-s5
JuniperJunos Version18.4 Updater1-s6
JuniperJunos Version18.4 Updater1-s7
JuniperJunos Version18.4 Updater2
JuniperJunos Version18.4 Updater2-s1
JuniperJunos Version18.4 Updater2-s2
JuniperJunos Version18.4 Updater2-s3
JuniperJunos Version18.4 Updater2-s4
JuniperJunos Version19.1 Update-
JuniperJunos Version19.1 Updater1
JuniperJunos Version19.1 Updater1-s1
JuniperJunos Version19.1 Updater1-s2
JuniperJunos Version19.1 Updater1-s3
JuniperJunos Version19.1 Updater1-s4
JuniperJunos Version19.1 Updater1-s5
JuniperJunos Version19.1 Updater1-s6
JuniperJunos Version19.2 Update-
JuniperJunos Version19.2 Updater1
JuniperJunos Version19.2 Updater1-s1
JuniperJunos Version19.2 Updater1-s2
JuniperJunos Version19.2 Updater1-s3
JuniperJunos Version19.2 Updater1-s4
JuniperJunos Version19.2 Updater1-s5
JuniperJunos Version19.3 Update-
JuniperJunos Version19.3 Updater1
JuniperJunos Version19.3 Updater1-s1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.67% 0.704
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
sirt@juniper.net 7.3 3.9 3.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CWE-285 Improper Authorization

The product does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.

CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere

The product does not properly prevent sensitive system-level information from being accessed by unauthorized actors who do not have the same level of access to the underlying system as the product does.