Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2023-44187

An Exposure of Sensitive Information vulnerability in the 'file copy' command of Junos OS Evolved allows a local, authenticated attacker with shell access to view passwords supplied on the CLI command-line. These credentials can then be used to provide unauthorized access to the remote system.

This issue affects Juniper Networks Junos OS Evolved:

  • All versions prior to 20.4R3-S7-EVO;
  • 21.1 versions 21.1R1-EVO and later;
  • 21.2 versions prior to 21.2R3-S5-EVO;
  • 21.3 versions prior to 21.3R3-S4-EVO;
  • 21.4 versions prior to 21.4R3-S4-EVO;
  • 22.1 versions prior to 22.1R3-S2-EVO;
  • 22.2 versions prior to 22.2R2-EVO.
  • Published: Oct 11, 2023
  • Updated: Oct 20, 2023
  • CVE: CVE-2023-44187
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

Software From Fixed in
juniper / junos_os_evolved 20.4-r1 20.4-r1.x
juniper / junos_os_evolved 21.1-r1 21.1-r1.x
juniper / junos_os_evolved 21.1-r2 21.1-r2.x
juniper / junos_os_evolved 21.1-r1-s1 21.1-r1-s1.x
juniper / junos_os_evolved 21.2-r1 21.2-r1.x
juniper / junos_os_evolved 21.2-r1-s1 21.2-r1-s1.x
juniper / junos_os_evolved 21.2-r2 21.2-r2.x
juniper / junos_os_evolved 21.1 21.1.x
juniper / junos_os_evolved 20.4-r1-s1 20.4-r1-s1.x
juniper / junos_os_evolved 20.4-r1-s2 20.4-r1-s2.x
juniper / junos_os_evolved 20.4-r2 20.4-r2.x
juniper / junos_os_evolved 20.4-r2-s1 20.4-r2-s1.x
juniper / junos_os_evolved 20.4-r2-s2 20.4-r2-s2.x
juniper / junos_os_evolved 20.4-r2-s3 20.4-r2-s3.x
juniper / junos_os_evolved 20.4-r3 20.4-r3.x
juniper / junos_os_evolved 20.4-r3-s1 20.4-r3-s1.x
juniper / junos_os_evolved 21.3-r1 21.3-r1.x
juniper / junos_os_evolved 20.4 20.4.x
juniper / junos_os_evolved 21.2 21.2.x
juniper / junos_os_evolved 21.2-r1-s2 21.2-r1-s2.x
juniper / junos_os_evolved 21.2-r2-s1 21.2-r2-s1.x
juniper / junos_os_evolved 21.3-r1-s1 21.3-r1-s1.x
juniper / junos_os_evolved - 20.4
juniper / junos_os_evolved 20.4-r3-s2 20.4-r3-s2.x
juniper / junos_os_evolved 21.4-r1 21.4-r1.x
juniper / junos_os_evolved 21.4-r1-s1 21.4-r1-s1.x
juniper / junos_os_evolved 21.2-r2-s2 21.2-r2-s2.x
juniper / junos_os_evolved 21.1-r3 21.1-r3.x
juniper / junos_os_evolved 21.2-r3 21.2-r3.x
juniper / junos_os_evolved 21.3-r2 21.3-r2.x
juniper / junos_os_evolved 21.3 21.3.x
juniper / junos_os_evolved 21.4 21.4.x
juniper / junos_os_evolved 21.1-r3-s1 21.1-r3-s1.x
juniper / junos_os_evolved 20.4-r3-s4 20.4-r3-s4.x
juniper / junos_os_evolved 20.4-r3-s3 20.4-r3-s3.x
juniper / junos_os_evolved 22.1-r1 22.1-r1.x
juniper / junos_os_evolved 21.3-r2-s1 21.3-r2-s1.x
juniper / junos_os_evolved 21.3-r2-s2 21.3-r2-s2.x
juniper / junos_os_evolved 21.4-r2 21.4-r2.x
juniper / junos_os_evolved 21.4-r2-s1 21.4-r2-s1.x
juniper / junos_os_evolved 21.4-r2-s2 21.4-r2-s2.x
juniper / junos_os_evolved 22.1-r1-s1 22.1-r1-s1.x
juniper / junos_os_evolved 22.1-r1-s2 22.1-r1-s2.x
juniper / junos_os_evolved 21.4-r1-s2 21.4-r1-s2.x
juniper / junos_os_evolved 22.2-r1-s1 22.2-r1-s1.x
juniper / junos_os_evolved 22.2-r1 22.2-r1.x
juniper / junos_os_evolved 21.2-r3-s1 21.2-r3-s1.x
juniper / junos_os_evolved 21.3-r3 21.3-r3.x
juniper / junos_os_evolved 20.4-r3-s5 20.4-r3-s5.x
juniper / junos_os_evolved 22.1-r2 22.1-r2.x
juniper / junos_os_evolved 21.4-r3 21.4-r3.x
juniper / junos_os_evolved 21.2-r3-s2 21.2-r3-s2.x
juniper / junos_os_evolved 21.2-r3-s3 21.2-r3-s3.x
juniper / junos_os_evolved 21.1-r3-s2 21.1-r3-s2.x
juniper / junos_os_evolved 21.1-r3-s3 21.1-r3-s3.x
juniper / junos_os_evolved 21.2-r3-s4 21.2-r3-s4.x
juniper / junos_os_evolved 21.4-r3-s1 21.4-r3-s1.x
juniper / junos_os_evolved 21.4-r3-s2 21.4-r3-s2.x
juniper / junos_os_evolved 21.4-r3-s3 21.4-r3-s3.x
juniper / junos_os_evolved 20.4-r3-s6 20.4-r3-s6.x
juniper / junos_os_evolved 21.3-r3-s1 21.3-r3-s1.x
juniper / junos_os_evolved 21.3-r3-s2 21.3-r3-s2.x
juniper / junos_os_evolved 21.3-r3-s3 21.3-r3-s3.x
juniper / junos_os_evolved 22.1-r2-s1 22.1-r2-s1.x
juniper / junos_os_evolved 22.1-r3 22.1-r3.x
juniper / junos_os_evolved 22.1-r3-s1 22.1-r3-s1.x