What is CVE-2016-1265?

CVE-2016-1265 is a critical-severity vulnerability in Juniper Junos_space, classified under Information Disclosure. CVSS score: 9.8/10. Published 2017-10-13.

How severe is CVE-2016-1265?

Critical severity. CVSS v3 base score is 9.8 out of 10.

CSRF in Juniper Junos_space

CVE-2016-1265

A remote unauthenticated network based attacker with access to Junos Space may execute arbitrary code on Junos Space or gain access to devices managed by Junos Space using cross site request forgery (CSRF), default authentication credentia…

Vulnerability class: Information Disclosure

EPSS: 0.010 (77.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Juniper Junos_space
Juniper Networks Junos Os — versions all versions prior to 15.1R2

Weakness classification (CWE)

References

sirt@juniper.net (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2016-1265?: CVE-2016-1265 is a critical-severity vulnerability in Juniper Junos_space, classified under Information Disclosure. CVSS score: 9.8/10. Published 2017-10-13.
How severe is CVE-2016-1265?: Critical severity. CVSS v3 base score is 9.8 out of 10.