Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Junos: Unauthenticated Remote Code Execution through J-Web interface
Vulnerability Description
A remote, unauthenticated attacker may be able to execute code by exploiting a use-after-free defect found in older versions of PHP through injection of crafted data via specific PHP URLs within the context of the J-Web process. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D67; 12.3 versions prior to 12.3R12-S5; 12.3X48 versions prior to 12.3X48-D35; 14.1 versions prior to 14.1R8-S5, 14.1R9; 14.1X53 versions prior to 14.1X53-D44, 14.1X53-D50; 14.2 versions prior to 14.2R7-S7, 14.2R8; 15.1 versions prior to 15.1R3; 15.1X49 versions prior to 15.1X49-D30; 15.1X53 versions prior to 15.1X53-D70.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Juniper Junos OS 安全漏洞
Vulnerability Description
Juniper Junos OS是美国瞻博网络(Juniper Networks)公司的一套专用于该公司的硬件系统的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Junos OS中存在释放后重用漏洞。远程攻击者可借助特定的PHP URLs利用该漏洞执行代码。以下版本受到影响:Juniper Junos OS 12.1X46-D67之前的12.1X46版本,12.3R12-S5之前的12.3版本,12.3X48-D35之前的12.3X48版本,14.1R8-S5和14.1
CVSS Information
N/A
Vulnerability Type
N/A