|CERT-In Vulnerability Note
Vulnerability in Juniper AppFormix: Debug Shell command execution
Original Issue Date:March 09, 2018
Severity Rating: HIGH
- Junipers AppFormix platforms versions : 2.7, 2.11 prior to 2.11.3, and 2.15 prior to 2.15.3.
Vulnerability has been reported Junipers AppFormix application management platform which can be used by an authenticated malicious user to execute root level commands
A Vulnerability has reported in Junipers AppFormix application management platform, An authenticated but malicious user may exploit this vulnerability to get access to the debug console of the platform and run root level commands and take control of the target. This vulnerability exposes AppFormix Agent┐s debug console to the malicious user, thereby providing it ability to execute root level commands.
- Vendor has released following software updates to resolve these specific issues:
Juniper AppFormix v2.11.3, v2.15.2, and all subsequent releases.
The information provided herein is on "as is" basis, without warranty of any kind.
Email: email@example.com Phone: +91-11-24368572
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
6, CGO Complex, Lodhi Road,
New Delhi - 110 003