Medium severity5.5NVD Advisory· Published Apr 24, 2017· Updated May 13, 2026

CVE-2017-2328

Description

An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unprivileged, authenticated, user to elevate their permissions through reading unprivileged information stored in the NorthStar controller.

Affected products

Juniper Networks/Northstar Controller
cpe:2.3:a:juniper:northstar_controller:*:*:*:*:*:*:*:*
Range: <=2.1.0
Juniper Networks/NorthStar Controller Applicationv5
Range: prior to version 2.1.0 Service Pack 1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/97617nvdThird Party AdvisoryVDB Entry
kb.juniper.net/JSA10783nvdMitigationVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.358
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000