CVE-2020-1631 - Juniper Junos OS Path Traversal Vulnerability
Project:Juniper
Product:Junos OS
Date Added:2022-03-25Due Date:2022-04-15
Vulnerability Name
Juniper Junos OS Path Traversal Vulnerability
Description
A path traversal vulnerability in the HTTP/HTTPS service used by J-Web, Web Authentication, Dynamic-VPN (DVPN), Firewall Authentication Pass-Through with Web-Redirect, and Zero Touch Provisioning (ZTP) allows an unauthenticated attacker to perform remote code execution.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2020-1631