cvelistv5 - cve-2014-3412

CVE-2014-3412 (GCVE-0-2014-3412)

Vulnerability from cvelistv5

Published

2014-05-20 14:00

Modified

2024-08-06 10:43

Severity ?

CWE

Summary

Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors.

References

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

CERTFR-2014-AVI-232

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans les produits Juniper. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	Juniper NSM versions antérieures à 2012.2R8
Juniper Networks	Junos Space	Juniper Junos Space versions antérieures à 13.3R1.8
Juniper Networks	N/A	Juniper ScreenOS 6.3

References

Title

Publication Time

ghsa-jpq4-9h4h-2x6m

Vulnerability from github

Published

2022-05-17 04:43

Modified

2022-05-17 04:43

Details

Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2014-3412"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2014-05-20T14:55:00Z",
    "severity": "HIGH"
  },
  "details": "Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors.",
  "id": "GHSA-jpq4-9h4h-2x6m",
  "modified": "2022-05-17T04:43:13Z",
  "published": "2022-05-17T04:43:13Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3412"
    },
    {
      "type": "WEB",
      "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10626"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/67454"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1030254"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

fkie_cve-2014-3412

Vulnerability from fkie_nvd

Published

2014-05-20 14:55

Modified

2025-04-12 10:46

Severity ?

Summary

Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors.

References

URL	Tags
cve@mitre.org	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10626	Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/67454
cve@mitre.org	http://www.securitytracker.com/id/1030254
af854a3a-2127-422b-91ae-364da2661108	http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10626	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/67454
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1030254

Impacted products

Vendor	Product	Version
juniper	junos_space	*
juniper	junos_space	1.0
juniper	junos_space	1.1
juniper	junos_space	1.2
juniper	junos_space	1.3
juniper	junos_space	1.4
juniper	junos_space	2.0
juniper	junos_space	11.1
juniper	junos_space	11.2
juniper	junos_space	11.3
juniper	junos_space	11.4
juniper	junos_space	12.1
juniper	junos_space	12.2
juniper	junos_space	12.3
juniper	junos_space_ja1500_appliance	-
juniper	junos_space_ja2500_appliance	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:*:-:*:*:*:*:*:*",
              "matchCriteriaId": "04CD63AF-B84F-4413-AFA4-7F6F23E0F555",
              "versionEndIncluding": "13.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "289CAAE5-882C-4236-BF76-B20F8A7F3014",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DA36F3E8-0F58-4635-843C-B3C62FD48682",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "CEA96869-72CF-49D2-94E1-4FF8102A29CA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "21DA6F2F-72F5-4D3A-AB4C-2C5D56C615FF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "F6CF9AF7-A335-4C05-9F45-08253A521D40",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "87F7E9A7-CA85-4F4D-8F0C-DF0C79A80B93",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:11.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "61A323AE-7C8D-49F3-BB47-15DEBAFC86BD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:11.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "EAEC058B-C096-455B-9A75-5191E00A367D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:11.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "A6E79208-AF42-48D9-990C-E2E2E1DE8E1E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:11.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "DA5E2C05-12C0-48B6-BE84-0A045B2A2B91",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:12.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "167749D0-F3B8-48F3-BFC8-37A531E48C16",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:12.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4C754E5-ACBB-45DE-B983-0888A8EB7CD3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:juniper:junos_space:12.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "84E7CE7F-4410-461D-9381-B186789B6509",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:juniper:junos_space_ja1500_appliance:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C58939FC-742F-4A93-8977-6953B32E6817",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:juniper:junos_space_ja2500_appliance:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D76C2611-F434-496C-8E30-4FA927223B81",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en Juniper Junos Space anterior a 13.3R1.8, cuando el firewall est\u00e1 deshabilitado, permite a atacantes remotos ejecutar comandos arbitrarios a trav\u00e9s de vectores no especificados."
    }
  ],
  "id": "CVE-2014-3412",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2014-05-20T14:55:05.770",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10626"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/67454"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id/1030254"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10626"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/67454"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1030254"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2014-3412

Vulnerability from gsd

Modified

2023-12-13 01:22

Details

Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors.

Aliases

CVE-2014-3412

Aliases

CVE-2014-3412

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2014-3412",
    "description": "Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors.",
    "id": "GSD-2014-3412"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2014-3412"
      ],
      "details": "Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors.",
      "id": "GSD-2014-3412",
      "modified": "2023-12-13T01:22:53.015563Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2014-3412",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "67454",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/67454"
          },
          {
            "name": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10626",
            "refsource": "CONFIRM",
            "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10626"
          },
          {
            "name": "1030254",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1030254"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:12.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:1.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:12.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:12.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:1.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:juniper:junos_space_ja2500_appliance:-:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:*:-:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "13.1",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:juniper:junos_space_ja1500_appliance:-:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:11.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:11.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:11.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:juniper:junos_space:11.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2014-3412"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1030254",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id/1030254"
            },
            {
              "name": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10626",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10626"
            },
            {
              "name": "67454",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/67454"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2014-05-21T20:40Z",
      "publishedDate": "2014-05-20T14:55Z"
    }
  }
}

var-201405-0181

Vulnerability from variot

Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors. An remote attacker can exploit this issue to execute arbitrary code with root privileges. This may facilitate complete compromise of the affected device. Junos Space 13.1 and prior are vulnerable. Juniper Junos Space is a set of network management solutions from Juniper Networks. The solution supports automated configuration, monitoring, and troubleshooting of devices and services throughout their lifecycle

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201405-0181",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "1.3"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "11.2"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "12.2"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "2.0"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "11.3"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "11.1"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "11.4"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "1.4"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "12.3"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "12.1"
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "juniper",
        "version": "1.0"
      },
      {
        "model": "junos space ja1500 appliance",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "juniper",
        "version": null
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "juniper",
        "version": "1.1"
      },
      {
        "model": "junos space ja2500 appliance",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "juniper",
        "version": null
      },
      {
        "model": "junos space",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "juniper",
        "version": "1.2"
      },
      {
        "model": "junos space",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "juniper",
        "version": "13.1"
      },
      {
        "model": "junos space",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "juniper",
        "version": "13.3r1.8"
      },
      {
        "model": "junos space ja1500 appliance",
        "scope": null,
        "trust": 0.8,
        "vendor": "juniper",
        "version": null
      },
      {
        "model": "junos space ja2500 appliance",
        "scope": null,
        "trust": 0.8,
        "vendor": "juniper",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201405-394"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3412"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/a:juniper:junos_space",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:juniper:junos_space_ja1500_appliance",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:juniper:junos_space_ja2500_appliance",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Juniper Networks",
    "sources": [
      {
        "db": "BID",
        "id": "67454"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2014-3412",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2014-3412",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "VHN-71352",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2014-3412",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "NVD",
            "id": "CVE-2014-3412",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201405-394",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-71352",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71352"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201405-394"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3412"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors. \nAn remote attacker can exploit this issue to execute arbitrary code with root privileges. This may facilitate complete compromise of the affected device. \nJunos Space 13.1 and prior are vulnerable. Juniper Junos Space is a set of network management solutions from Juniper Networks. The solution supports automated configuration, monitoring, and troubleshooting of devices and services throughout their lifecycle",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2014-3412"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      },
      {
        "db": "BID",
        "id": "67454"
      },
      {
        "db": "VULHUB",
        "id": "VHN-71352"
      }
    ],
    "trust": 1.98
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2014-3412",
        "trust": 2.8
      },
      {
        "db": "BID",
        "id": "67454",
        "trust": 2.0
      },
      {
        "db": "SECTRACK",
        "id": "1030254",
        "trust": 1.7
      },
      {
        "db": "JUNIPER",
        "id": "JSA10626",
        "trust": 1.7
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201405-394",
        "trust": 0.7
      },
      {
        "db": "VULHUB",
        "id": "VHN-71352",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71352"
      },
      {
        "db": "BID",
        "id": "67454"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201405-394"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3412"
      }
    ]
  },
  "id": "VAR-201405-0181",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71352"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-11-23T22:08:20.865000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "JSA10626",
        "trust": 0.8,
        "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10626"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-noinfo",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2014-3412"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/67454"
      },
      {
        "trust": 1.7,
        "url": "http://www.securitytracker.com/id/1030254"
      },
      {
        "trust": 1.6,
        "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10626"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3412"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-3412"
      },
      {
        "trust": 0.1,
        "url": "http://kb.juniper.net/infocenter/index?page=content\u0026amp;id=jsa10626"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71352"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201405-394"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3412"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-71352"
      },
      {
        "db": "BID",
        "id": "67454"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201405-394"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3412"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2014-05-20T00:00:00",
        "db": "VULHUB",
        "id": "VHN-71352"
      },
      {
        "date": "2014-05-16T00:00:00",
        "db": "BID",
        "id": "67454"
      },
      {
        "date": "2014-05-22T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      },
      {
        "date": "2014-05-23T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201405-394"
      },
      {
        "date": "2014-05-20T14:55:05.770000",
        "db": "NVD",
        "id": "CVE-2014-3412"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2014-05-21T00:00:00",
        "db": "VULHUB",
        "id": "VHN-71352"
      },
      {
        "date": "2014-05-16T00:00:00",
        "db": "BID",
        "id": "67454"
      },
      {
        "date": "2014-05-22T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      },
      {
        "date": "2014-05-23T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201405-394"
      },
      {
        "date": "2024-11-21T02:08:02.230000",
        "db": "NVD",
        "id": "CVE-2014-3412"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201405-394"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Juniper Junos Space Vulnerable to arbitrary command execution",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-002566"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "lack of information",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201405-394"
      }
    ],
    "trust": 0.6
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2014-3412 (GCVE-0-2014-3412)

Vulnerability from cvelistv5

CERTFR-2014-AVI-232

Vulnerability from certfr_avis

Solution

ghsa-jpq4-9h4h-2x6m

Vulnerability from github

fkie_cve-2014-3412

Vulnerability from fkie_nvd

gsd-2014-3412

Vulnerability from gsd

var-201405-0181

Vulnerability from variot

Tags

Sightings

Nomenclature