High severity8.6NVD Advisory· Published Apr 24, 2017· Updated May 13, 2026

CVE-2017-2321

Description

A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various system services partial to full denials of services, modification of system states and files, and potential disclosure of sensitive information which may assist the attacker in further attacks on the system through the use of multiple attack vectors, including man-in-the-middle attacks, file injections, and malicious execution of commands causing out of bound memory conditions leading to other attacks.

Affected products

Juniper Networks/Northstar Controller
cpe:2.3:a:juniper:northstar_controller:*:*:*:*:*:*:*:*
Range: <=2.1.0
Juniper Networks/NorthStar Controller Applicationv5
Range: prior to version 2.1.0 Service Pack 1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/97693nvdThird Party AdvisoryVDB Entry
kb.juniper.net/JSA10783nvdMitigationVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.559
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000