Vulnerability Description
A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various denials of services leading to targeted information disclosure, modification of any component of the NorthStar system, including managed systems, and full denial of services to any systems under management which NorthStar interacts with using read-only or read-write credentials.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Northstar Controller | <= 2.1.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/97687Third Party AdvisoryVDB Entry
- https://kb.juniper.net/JSA10783MitigationVendor Advisory
- http://www.securityfocus.com/bid/97687Third Party AdvisoryVDB Entry
- https://kb.juniper.net/JSA10783MitigationVendor Advisory
FAQ
What is CVE-2017-2320?
CVE-2017-2320 is a vulnerability with a CVSS score of 10.0 (CRITICAL). A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various denials o...
How severe is CVE-2017-2320?
CVE-2017-2320 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2017-2320?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Northstar Controller.