Vulnerability Database

296,172

Total vulnerabilities in the database

CVE-2018-0008

An unauthenticated root login may allow upon reboot when a commit script is used. A commit script allows a device administrator to execute certain instructions during commit, which is configured under the [system scripts commit] stanza. Certain commit scripts that work without a problem during normal commit may cause unexpected behavior upon reboot which can leave the system in a state where root CLI login is allowed without a password due to the system reverting to a "safe mode" authentication state. Lastly, only logging in physically to the console port as root, with no password, will work. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D71 on SRX; 12.3X48 versions prior to 12.3X48-D55 on SRX; 14.1 versions prior to 14.1R9; 14.1X53 versions prior to 14.1X53-D40 on QFX, EX; 14.2 versions prior to 14.2R7-S9, 14.2R8; 15.1 versions prior to 15.1F5-S7, 15.1F6-S8, 15.1R5-S6, 15.1R6; 15.1X49 versions prior to 15.1X49-D110 on SRX; 15.1X53 versions prior to 15.1X53-D232 on QFX5200/5110; 15.1X53 versions prior to 15.1X53-D49, 15.1X53-D470 on NFX; 15.1X53 versions prior to 15.1X53-D65 on QFX10K; 16.1 versions prior to 16.1R2. No other Juniper Networks products or platforms are affected by this issue.

  • Published: Jan 10, 2018
  • Updated: Apr 13, 2023
  • CVE: CVE-2018-0008
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.2
  • AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

OWASP TOP 10:

Software From Fixed in
juniper / junos 12.1x46-d60 12.1x46-d60.x
juniper / junos 12.1x46-d30 12.1x46-d30.x
juniper / junos 12.1x46-d45 12.1x46-d45.x
juniper / junos 12.1x46-d50 12.1x46-d50.x
juniper / junos 12.1x46-d25 12.1x46-d25.x
juniper / junos 12.1x46 12.1x46.x
juniper / junos 12.1x46-d65 12.1x46-d65.x
juniper / junos 12.1x46-d35 12.1x46-d35.x
juniper / junos 12.1x46-d20 12.1x46-d20.x
juniper / junos 12.1x46-d40 12.1x46-d40.x
juniper / junos 12.1x46-d15 12.1x46-d15.x
juniper / junos 12.1x46-d10 12.1x46-d10.x
juniper / junos 12.1x46-d55 12.1x46-d55.x
juniper / junos 12.3x48-d10 12.3x48-d10.x
juniper / junos 12.3x48-d15 12.3x48-d15.x
juniper / junos 12.3x48-d35 12.3x48-d35.x
juniper / junos 12.3x48-d50 12.3x48-d50.x
juniper / junos 12.3x48-d30 12.3x48-d30.x
juniper / junos 12.3x48 12.3x48.x
juniper / junos 12.3x48-d25 12.3x48-d25.x
juniper / junos 12.3x48-d45 12.3x48-d45.x
juniper / junos 12.3x48-d20 12.3x48-d20.x
juniper / junos 12.3x48-d40 12.3x48-d40.x
juniper / junos 15.1x49-d50 15.1x49-d50.x
juniper / junos 15.1x49-d30 15.1x49-d30.x
juniper / junos 15.1x49-d70 15.1x49-d70.x
juniper / junos 15.1x49-d80 15.1x49-d80.x
juniper / junos 15.1x49 15.1x49.x
juniper / junos 15.1x49-d60 15.1x49-d60.x
juniper / junos 15.1x49-d100 15.1x49-d100.x
juniper / junos 15.1x49-d35 15.1x49-d35.x
juniper / junos 15.1x49-d45 15.1x49-d45.x
juniper / junos 15.1x49-d75 15.1x49-d75.x
juniper / junos 15.1x49-d65 15.1x49-d65.x
juniper / junos 15.1x49-d90 15.1x49-d90.x
juniper / junos 15.1x49-d40 15.1x49-d40.x
juniper / junos 15.1x49-d20 15.1x49-d20.x
juniper / junos 15.1x49-d10 15.1x49-d10.x
juniper / junos 15.1x49-d55 15.1x49-d55.x
juniper / junos 14.1-r1 14.1-r1.x
juniper / junos 14.1-r4 14.1-r4.x
juniper / junos 14.1 14.1.x
juniper / junos 14.1-r3 14.1-r3.x
juniper / junos 14.1-r7 14.1-r7.x
juniper / junos 14.1-r6 14.1-r6.x
juniper / junos 14.1-r2 14.1-r2.x
juniper / junos 14.1-r5 14.1-r5.x
juniper / junos 14.1x53-d15 14.1x53-d15.x
juniper / junos 14.1x53-d35 14.1x53-d35.x
juniper / junos 14.1x53-d10 14.1x53-d10.x
juniper / junos 14.1x53-d30 14.1x53-d30.x
juniper / junos 14.1x53-d25 14.1x53-d25.x
juniper / junos 14.1x53-d27 14.1x53-d27.x
juniper / junos 14.1x53-d16 14.1x53-d16.x
juniper / junos 14.1x53 14.1x53.x
juniper / junos 14.1x53-d26 14.1x53-d26.x
juniper / junos 14.2-r1 14.2-r1.x
juniper / junos 14.2-r2 14.2-r2.x
juniper / junos 14.2-r3 14.2-r3.x
juniper / junos 14.2-r6 14.2-r6.x
juniper / junos 14.2 14.2.x
juniper / junos 14.2-r8 14.2-r8.x
juniper / junos 14.2-r7 14.2-r7.x
juniper / junos 14.2-r4 14.2-r4.x
juniper / junos 14.2-r5 14.2-r5.x
juniper / junos 15.1-f1 15.1-f1.x
juniper / junos 15.1-f2-s3 15.1-f2-s3.x
juniper / junos 15.1-f2-s2 15.1-f2-s2.x
juniper / junos 15.1-r6 15.1-r6.x
juniper / junos 15.1-f4 15.1-f4.x
juniper / junos 15.1-f2-s4 15.1-f2-s4.x
juniper / junos 15.1-f2 15.1-f2.x
juniper / junos 15.1-a1 15.1-a1.x
juniper / junos 15.1-f3 15.1-f3.x
juniper / junos 15.1-f2-s1 15.1-f2-s1.x
juniper / junos 15.1-f5 15.1-f5.x
juniper / junos 15.1 15.1.x
juniper / junos 15.1-f6-s8 15.1-f6-s8.x
juniper / junos 15.1-r5-s6 15.1-r5-s6.x
juniper / junos 15.1x53-d62 15.1x53-d62.x
juniper / junos 15.1x53-d20 15.1x53-d20.x
juniper / junos 15.1x53-d30 15.1x53-d30.x
juniper / junos 15.1x53 15.1x53.x
juniper / junos 15.1x53-d33 15.1x53-d33.x
juniper / junos 15.1x53-d25 15.1x53-d25.x
juniper / junos 15.1x53-d63 15.1x53-d63.x
juniper / junos 15.1x53-d32 15.1x53-d32.x
juniper / junos 15.1x53-d34 15.1x53-d34.x
juniper / junos 15.1x53-d210 15.1x53-d210.x
juniper / junos 15.1x53-d70 15.1x53-d70.x
juniper / junos 15.1x53-d21 15.1x53-d21.x
juniper / junos 15.1x53-d60 15.1x53-d60.x
juniper / junos 15.1x53-d61 15.1x53-d61.x
juniper / junos 15.1x53-d230 15.1x53-d230.x
juniper / junos 15.1x53-d470 15.1x53-d470.x
juniper / junos 15.1x53-d57 15.1x53-d57.x
juniper / junos 15.1x53-d64 15.1x53-d64.x
juniper / junos 15.1x53-d50 15.1x53-d50.x
juniper / junos 15.1x53-d51 15.1x53-d51.x
juniper / junos 15.1x53-d52 15.1x53-d52.x
juniper / junos 15.1x53-d55 15.1x53-d55.x
juniper / junos 16.1-r1 16.1-r1.x