Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
NFX250 Series: Hardcoded credentials in the vSRX VNF instance.
Vulnerability Description
A Use of Hard-coded Credentials vulnerability exists in the NFX250 Series for the vSRX Virtual Network Function (VNF) instance, which allows an attacker to take control of the vSRX VNF instance if they have the ability to access an administrative service (e.g. SSH) on the VNF, either locally, or through the network. This issue only affects the NFX250 Series vSRX VNF. No other products or platforms are affected. This issue is only applicable to environments where the vSRX VNF root password has not been configured. This issue affects the Juniper Networks NFX250 Network Services Platform vSRX VNF instance on versions prior to 19.2R1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
Juniper Networks NFX250 Network Services Platform vSRX VNF 信任管理问题漏洞
Vulnerability Description
Juniper Networks NFX250 Series是美国瞻博网络(Juniper Networks)公司的一款NFX250系列网络服务平台。 Juniper Networks NFX250 Series中存在信任管理问题漏洞,该漏洞源于vSRX VNF实例中使用了硬编码凭证。攻击者可利用该漏洞控制vSRX VNF实例。
CVSS Information
N/A
Vulnerability Type
N/A