Juniper Junos Space < 17.2R1 Multiple Vulnerabilities (JSA10838)

critical Nessus Plugin ID 108520


The remote device is affected by multiple vulnerabilities.


According to its self-reported version number, the remote Junos Space version is prior to 17.2R1. It is, therefore, affected by multiple vulnerabilities.


Upgrade to Junos Space 17.2R1 or later.

See Also

Plugin Details

Severity: Critical

ID: 108520

File Name: juniper_space_jsa_10838.nasl

Version: 1.7

Type: local

Published: 3/21/2018

Updated: 6/11/2019

Supported Sensors: Nessus

Risk Information


Risk Factor: Critical

Score: 9.7


Risk Factor: Critical

Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C


Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.4

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:juniper:junos_space

Required KB Items: Host/Junos_Space/version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 1/10/2018

Vulnerability Publication Date: 10/27/2015

Exploitable With


Core Impact

Metasploit (Linux Kernel UDP Fragmentation Offset (UFO) Privilege Escalation)

Reference Information

CVE: CVE-2015-5174, CVE-2015-5188, CVE-2015-5220, CVE-2015-5304, CVE-2015-7236, CVE-2015-7501, CVE-2016-2141, CVE-2016-8743, CVE-2017-1000111, CVE-2017-1000112, CVE-2017-12172, CVE-2017-14106, CVE-2017-15098, CVE-2017-3167, CVE-2017-3169, CVE-2017-5645, CVE-2017-5664, CVE-2017-7668, CVE-2017-7679, CVE-2017-9788, CVE-2017-9798, CVE-2018-0011, CVE-2018-0012, CVE-2018-0013

BID: 57974, 76771, 77345, 78215, 79788, 83329, 91481, 95077, 97702, 98888, 99134, 99135, 99137, 99170, 99569, 100262, 100267, 100872, 100878, 101781, 101949