CVE-2016-1279
Description
J-Web in Juniper Junos OS before 12.1X46-D45, 12.1X46-D50, 12.1X47 before 12.1X47-D35, 12.3 before 12.3R12, 12.3X48 before 12.3X48-D25, 13.3 before 13.3R10, 13.3R9 before 13.3R9-S1, 14.1 before 14.1R7, 14.1X53 before 14.1X53-D35, 14.2 before 14.2R6, 15.1 before 15.1A2 or 15.1F4, 15.1X49 before 15.1X49-D30, and 15.1R before 15.1R3 might allow remote attackers to obtain sensitive information and consequently gain administrative privileges via unspecified vectors.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.909
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are fixed in junos 12.1x46-d45 | NCM |
| Vulnerabilities CVE-2016-1263,CVE-2016-1279 are fixed in junos 12.1x47-d35 | NCM |
| Vulnerabilities CVE-2016-1279,CVE-2016-1280,CVE-2016-4922 are fixed in junos 12.3r12 | NCM |
| Multiple Vulnerabilities are fixed in junos 13.3r10 | NCM |
| Vulnerabilities CVE-2016-1263,CVE-2016-1279,CVE-2016-4922 are fixed in junos 14.1r7 | NCM |
| Multiple Vulnerabilities are fixed in junos 14.2R6 | NCM |
| Vulnerabilities CVE-2016-1279 are fixed in junos 15.1a2 | NCM |
| Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-1279) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234