Skip to main content

128 Technology Session Smart Router Firmware

1 CVEs product

Monthly

CVE-2021-31349 CRITICAL Act Now

The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change settings, manipulate services and execute arbitrary. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Juniper Authentication Bypass 128 Technology Session Smart Router Firmware
NVD
CVSS 3.1
9.8
EPSS
1.7%
EPSS 2% CVSS 9.8
CRITICAL Act Now

The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change settings, manipulate services and execute arbitrary. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Juniper Authentication Bypass +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy