CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-1278

Juniper Junos OS before 12.1X46-D50 on SRX Series devices reverts to "safe mode" authentication and allows root CLI logins without a password after a failed upgrade to 12.1X46, which might allow local users to gain privileges by leveraging use of the "request system software" command with the "partition" option.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.2%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.9

References

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10753
http://www.securityfocus.com/bid/91757
http://www.securitytracker.com/id/1036307
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10753
http://www.securityfocus.com/bid/91757
http://www.securitytracker.com/id/1036307

Products affected by CVE-2016-1278

Juniper » Junos » Version: 12.1x44

cpe:2.3:o:juniper:junos:12.1x44
Juniper » Junos » Version: 12.1x46

cpe:2.3:o:juniper:junos:12.1x46

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-1278

Products

Pricing

Contact Us