Juniper Junos SRX Series 'set system ports console insecure' Local Privilege Escalation (JSA10683)
High Nessus Plugin ID 85225
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionAccording to its self-reported version number, the remote Juniper Junos SRX Series device is affected by a privilege escalation vulnerability related to the 'set system ports console insecure' feature. A local attacker can exploit this vulnerability by using access to a console port to gain full administrative privileges.
SolutionApply the relevant Junos software release or workaround referenced in Juniper advisory JSA10683.