CVE-2013-6012
Juniper Junos 12.1X44-12.1.X44-D20 and 12.1X45-12.1X45-D15 - Authentication Bypass via Configuration Validation Error
Title source: llmDescription
Juniper Junos 12.1X44 before 12.1.X44-D20 and 12.1X45 before 12.1X45-D15, when the no-validate option is enabled, does not properly handle configuration validation errors during the config commit phase of the boot-up sequence, which allows remote attackers to bypass authentication via unspecified vectors.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10593
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/63389
Scores
EPSS
0.0015
EPSS Percentile
35.0%
Details
CWE
CWE-287
Status
published
Products (2)
juniper/junos
12.1x44
juniper/junos
12.1x45
Published
Oct 28, 2013
Tracked Since
Feb 18, 2026