NVD

Id
17697  
Name
CVE-2016-1280  
Description
PKId in Juniper Junos OS before 12.1X44-D52, 12.1X46 before 12.1X46-D37, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R12, 12.3X48 before 12.3X48-D20, 13.3 before 13.3R10, 14.1 before 14.1R8, 14.1X53 before 14.1X53-D40, 14.2 before 14.2R7, 15.1 before 15.1R4, 15.1X49 before 15.1X49-D20, 15.1X53 before 15.1X53-D60, and 16.1 before 16.1R1 allow remote attackers to bypass an intended certificate validation mechanism via a self-signed certificate with an Issuer name that matches a valid CA certificate enrolled in Junos.  
Reject
 
CVSS Version
2  
CVSS Score
6.4  
Severity
Medium  
CVSS Base Score
6.4  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:N)  
Pub Date
2017-01-19  
Published
2016-09-09  
Modified Date
2016-11-28  
Seq
2016-1280  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
97474 17697 CVE-2016-1280 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10755  View
97475 17697 CVE-2016-1280 91761  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
3823 JVNDB-2016-004596 Juniper Junos OS の PKId における証明書検証メカニズムを回避される脆弱性 Juniper Junos OS の PKId には、証明書検証メカニズムを回避される脆弱性が存在します。 CVE-2016-1280 87786 CVE-2016-1280 17697 6.4 6.5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-004596.html 2016-07-13 2016-09-12 View