Vulnerability Details CVE-2021-0265
An unvalidated REST API in the AppFormix Agent of Juniper Networks AppFormix allows an unauthenticated remote attacker to execute commands as root on the host running the AppFormix Agent, when certain preconditions are performed by the attacker, thus granting the attacker full control over the environment. This issue affects: Juniper Networks AppFormix 3 versions prior to 3.1.22, 3.2.14, 3.3.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.054
EPSS Ranking 89.7%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 10.0
Products affected by CVE-2021-0265
-
cpe:2.3:a:juniper:appformix:3.0.0
-
cpe:2.3:a:juniper:appformix:3.0.1
-
cpe:2.3:a:juniper:appformix:3.1.0
-
cpe:2.3:a:juniper:appformix:3.1.1
-
cpe:2.3:a:juniper:appformix:3.1.2
-
cpe:2.3:a:juniper:appformix:3.2.0