CVE-2020-1621

Medium

A local, authenticated user with shell can obtain the hashed values of login passwords via configd traces. This issue affects all versions…

juniper·CWE-664·Published 2020-04-08

CVSS

5.5

EPSS

0.00

KEV

Exploits

cve.orgen

175 chars

A local, authenticated user with shell can obtain the hashed values of login passwords via configd traces. This issue affects all versions of Junos OS Evolved prior to 19.3R1.

NVDen

175 chars

A local, authenticated user with shell can obtain the hashed values of login passwords via configd traces. This issue affects all versions of Junos OS Evolved prior to 19.3R1.

Un usuario local autenticado con shell puede obtener los valores de las contraseñas de inicio de sesión del hash por medio de trazas del configd. Este problema afecta a todas las versiones de Junos OS Evolved anteriores a 19.3R1.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:P/I:N/A:N
3.1	Primary	cve.org	5.5	—	—	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
3.1	Primary	cve.org	5.5	—	—	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
3.1	Primary	NVD	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
3.1	Secondary	NVD	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N