N/A

PKId in Juniper Junos OS before 12.1X44-D52, 12.1X46 before 12.1X46-D37, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R12, 12.3X48 before 12.3X48-D20, 13.3 before 13.3R10, 14.1 before 14.1R8, 14.1X53 before 14.1X53-D40, 14.2 before 14.2R7, 15.1 before 15.1R4, 15.1X49 before 15.1X49-D20, 15.1X53 before 15.1X53-D60, and 16.1 before 16.1R1 allow remote attackers to bypass an intended certificate validation mechanism via a self-signed certificate with an Issuer name that matches a valid CA certificate enrolled in Junos.

N/A

N/A

Juniper Junos 安全绕过漏洞

Juniper Junos OS是美国瞻博网络（Juniper Networks）公司的一套专用于该公司的硬件系统的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Junos OS中的PKId中存在安全漏洞。远程攻击者可借助自签名证书利用该漏洞绕过既定的证书验证机制。以下版本受到影响：Juniper Junos OS 12.1X44-D52之前的版本，12.1X46-D37之前的12.1X46版本，12.1X47-D30之前的12.1X47版本，12.3R12之前的12.

N/A

N/A