Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D25, 12.1X47 before 12.1X47-D15, 12.3 before 12.3R9, 13.1 before 13.1R4-S3, 13.2 before 13.2R6, 13.3 before 13.3R5, 14.1 before 14.1R3, and 14.2 before 14.2R1 does not properly handle double quotes in authorization attributes in the TACACS+ configuration, which allows local users to bypass the security policy and execute commands via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Juniper Networks Junos 权限许可和访问控制漏洞
Vulnerability Description
Juniper Junos是美国瞻博网络(Juniper Networks)公司的一套专用于该公司的硬件系统的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Networks Junos中存在安全漏洞,该漏洞源于程序没有正确处理TACACS+配置的authorization属性中的双引号。本地攻击者可利用该漏洞绕过安全策略,执行任意命令。以下版本受到影响:Juniper Junos 12.1X44-D45之前12.1X44版本,12.1X46-D25之前12.1X46版本
CVSS Information
N/A
Vulnerability Type
N/A