ByteOS Network

NVD Vulnerability Details :

CVE-2017-2332

Deferred

Source-sirt@juniper.net

Published At-24 Apr, 2017 | 15:59

Updated At-20 Apr, 2025 | 01:37

An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious, network based, unauthenticated attacker to perform privileged actions to gain complete control over the environment.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	8.8	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Primary	2.0	9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C

CPE Matches

Juniper Networks, Inc.

>>northstar_controller>>Versions up to 2.1.0(inclusive)

cpe:2.3:a:juniper:northstar_controller:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-287	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
http://www.securityfocus.com/bid/97624	sirt@juniper.net	Third Party Advisory VDB Entry
https://kb.juniper.net/JSA10783	sirt@juniper.net	Mitigation Vendor Advisory
http://www.securityfocus.com/bid/97624	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
https://kb.juniper.net/JSA10783	af854a3a-2127-422b-91ae-364da2661108	Mitigation Vendor Advisory

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History