all InfoSec news
CVE-2023-36851 (junos)
Sept. 27, 2023, 3:18 p.m. |
National Vulnerability Database web.nvd.nist.gov
With a specific request to
webauth_operation.php
that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of
integrity
for a certain part of the file system, which may allow chaining to other vulnerabilities.
This issue affects Juniper Networks Junos OS on SRX Series: …
attacker authentication critical cve file files file system function impact integrity juniper juniper networks junos junos os loss missing network networks php request series system unauthenticated upload vulnerability web
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-21380 (android)
6 months ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
6 months ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Data Privacy Manager m/f/d)
@ Coloplast | Hamburg, HH, DE
Cybersecurity Sr. Manager
@ Eastman | Kingsport, TN, US, 37660
KDN IAM Associate Consultant
@ KPMG India | Hyderabad, Telangana, India
Learning Experience Designer in Cybersecurity (f/m/div.) (Salary: ~113.000 EUR p.a.*)
@ Bosch Group | Stuttgart, Germany
Senior Security Engineer - SIEM
@ Samsara | Remote - US