Vulnerability Name:

CVE-2017-2349 (CCN-128497)

Assigned:2016-12-01
Published:2017-07-13
Updated:2019-10-09
Summary:A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series devices potentially allows a user with login access to the device to execute shell commands and elevate privileges. Affected releases are Juniper Networks Junos OS 12.1X44 prior to 12.1X44-D60; 12.1X46 prior to 12.1X46-D50; 12.1X47 prior to 12.1X47-D30, 12.1X47-D35; 12.3X48 prior to 12.3X48-D20, 12.3X48-D30; 15.1X49 prior to 15.1X49-D20, 15.1X49-D30.
CVSS v3 Severity:8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.0 High (CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-77
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2017-2349

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1038898

Source: XF
Type: UNKNOWN
juniper-cve20172349-priv-esc(128497)

Source: CCN
Type: Juniper Networks Security Bulletin JSA10801
SRX Series: Command injection vulnerability in SRX IDP feature. (CVE-2017-2349)

Source: CONFIRM
Type: Vendor Advisory
https://kb.juniper.net/JSA10801

Vulnerable Configuration:Configuration 1:
  • cpe:/o:juniper:junos:12.1x44:-:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d10:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d15:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d20:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d25:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d30:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d35:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d40:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d45:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d50:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x44:d55:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:-:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d10:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d15:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d20:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d25:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d30:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d35:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d40:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d45:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d50:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x46:d55:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x47:-:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x47:d10:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x47:d15:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x47:d20:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x47:d25:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.1x47:d35:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.3x48:*:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.3x48:d10:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.3x48:d15:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.3x48:d30:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:15.1x49:d10:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:15.1x49:d15:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:15.1x49:d30:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/o:juniper:junos:15.1x49:*:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:12.3x48:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    BACK
    juniper junos 12.1x44
    juniper junos 12.1x44 d10
    juniper junos 12.1x44 d15
    juniper junos 12.1x44 d20
    juniper junos 12.1x44 d25
    juniper junos 12.1x44 d30
    juniper junos 12.1x44 d35
    juniper junos 12.1x44 d40
    juniper junos 12.1x44 d45
    juniper junos 12.1x44 d50
    juniper junos 12.1x44 d55
    juniper junos 12.1x46
    juniper junos 12.1x46 d10
    juniper junos 12.1x46 d15
    juniper junos 12.1x46 d20
    juniper junos 12.1x46 d25
    juniper junos 12.1x46 d30
    juniper junos 12.1x46 d35
    juniper junos 12.1x46 d40
    juniper junos 12.1x46 d45
    juniper junos 12.1x46 d50
    juniper junos 12.1x46 d55
    juniper junos 12.1x47
    juniper junos 12.1x47 d10
    juniper junos 12.1x47 d15
    juniper junos 12.1x47 d20
    juniper junos 12.1x47 d25
    juniper junos 12.1x47 d35
    juniper junos 12.3x48
    juniper junos 12.3x48 d10
    juniper junos 12.3x48 d15
    juniper junos 12.3x48 d30
    juniper junos 15.1x49 d10
    juniper junos 15.1x49 d15
    juniper junos 15.1x49 d30
    juniper junos 15.1x49
    juniper junos 12.3x48