Juniper Junos User Authentication Bypass (JSA10802)
Critical Nessus Plugin ID 102077
SynopsisThe remote device is affected by an authentication bypass vulnerability.
DescriptionAccording to its self-reported version number, the remote Juniper Junos device is affected by an authentication bypass vulnerability due to a specific device configuration that can result in a commit failure condition, which allows a user to be logged in without being prompted for a password. A remote attacker can exploit this issue to bypass authentication on the device.
SolutionUpgrade to the relevant Junos software release referenced in Juniper security advisory JSA10802.