NVD

Id
17684  
Name
CVE-2016-1264  
Description
Race condition in the Op command in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 12.3X50 before 12.3X50-D50, 13.2 before 13.2R8, 13.2X51 before 13.2X51-D39, 13.2X52 before 13.2X52-D30, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.1X53 before 14.1X53-D30, 14.2 before 14.2R4, 15.1 before 15.1F2 or 15.1R2, 15.1X49 before 15.1X49-D10 or 15.1X49-D20, and 16.1 before 16.1R1 allows remote authenticated users to gain privileges via the URL option.  
Reject
 
CVSS Version
2  
CVSS Score
6.5  
Severity
Medium  
CVSS Base Score
6.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2016-04-15  
Modified Date
2016-12-02  
Seq
2016-1264  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
97450 17684 CVE-2016-1264 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10725  View
97451 17684 CVE-2016-1264 1035669  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
1371 JVNDB-2016-002144 Juniper Junos OS の Op コマンドにおける権限を取得される脆弱性 Juniper Junos OS の Op コマンドには、競合状態により、権限を取得される脆弱性が存在します。 CVE-2016-1264 87770 CVE-2016-1264 17684 6.5 8.8 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002144.html 2016-04-13 2016-04-22 View