CVE-2017-2326

MEDIUM

Juniper Networks NorthStar Controller <2.1.0 SP1 - Info Disclosure

Title source: llm

Description

An information disclosure vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unprivileged, authenticated, network-based attacker to replicate the underlying Junos OS VM and all data it maintains to their local system for future analysis.

References (2)

Scores

CVSS v3 6.5
EPSS 0.0028
EPSS Percentile 51.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Classification

CWE
CWE-200
Status published

Affected Products (2)

juniper/northstar_controller < 2.1.0
Juniper Networks/NorthStar Controller Application < prior to version 2.1.0 Service Pack 1

Timeline

Published Apr 24, 2017
Tracked Since Feb 18, 2026