CVE-2017-2306

Description

On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can execute code on the device.

Affected products

• Juniper Networks / Junos Spaceversions prior to 16.1R1 – versions prior to 16.1R1

References

• MISChttps://kb.juniper.net/JSA10770
• MISChttp://www.securityfocus.com/bid/98772