Medium severity6.5NVD Advisory· Published May 30, 2017· Updated Jun 17, 2026
CVE-2017-2308
CVE-2017-2308
Description
An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to read arbitrary files on the device.
Affected products
3cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:*range: <=16.1
- (no CPE)range: <16.1R1
- (no CPE)range: versions prior to 16.1R1
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/98755nvdThird Party AdvisoryVDB Entry
- kb.juniper.net/JSA10770nvdMitigationVendor Advisory
News mentions
0No linked articles in our index yet.