CVE-2021-0248

This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials in Juniper Networks Junos OS allows an attacker to take over any instance of an NFX deployment. This issue is only exploitable through administrative interfaces. This issue affects: Juniper Networks Junos OS versions prior to 19.1R1 on NFX Series. No other platforms besides NFX Series devices are affected.
References
Link Resource
https://kb.juniper.net/JSA11141 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:19.1:-:*:*:*:*:*:*
OR cpe:2.3:h:juniper:nfx150:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:nfx250:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:nfx350:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-04-22 20:15

Updated : 2024-02-04 21:47


NVD link : CVE-2021-0248

Mitre link : CVE-2021-0248

CVE.ORG link : CVE-2021-0248


JSON object : View

Products Affected

juniper

  • nfx250
  • nfx150
  • nfx350
  • junos
CWE
CWE-798

Use of Hard-coded Credentials