Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
CVE-2019-0015
CVE information
Published
Last Modified
CVSSv2.0 Severity
CVSSv3.1 Severity
Impact Analysis
Description
A vulnerability in the SRX Series Service Gateway allows deleted dynamic VPN users to establish dynamic VPN connections until the device is rebooted. A deleted dynamic VPN connection should be immediately disallowed from establishing new VPN connections. Due to an error in token caching, deleted users are allowed to connect once a previously successful dynamic VPN connection has been established. A reboot is required to clear the cached authentication token. Affected releases are Junos OS on SRX Series: 12.3X48 versions prior to 12.3X48-D75; 15.1X49 versions prior to 15.1X49-D150; 17.3 versions prior to 17.3R3; 17.4 versions prior to 17.4R2; 18.1 versions prior to 18.1R3; 18.2 versions prior to 18.2R2..
CVSSv2.0 Score
- Severity
- Medium
- Base Score
- 5.5/10
- Exploit Score
- 8/10
- Access Vector
- Network
- Access Complexity
- Low
- Authentication Required
- Single
- Impact Score
- 4.9/10
- Confidentiality Impact
- Partial
- Availability Impact
- None
- Integrity Impact
- Partial
CVSSv3.1 Score
- Severity
- Medium
- Base Score
- 5.4/10
- Exploit Score
- 2.8/10
- Access Vector
- Network
- Access Complexity
- Low
- Privileges Required
- Low
- Impact Score
- 2.5/10
- Confidentiality Impact
- Low
- Availability Impact
- None
- Integrity Impact
- Low
- Scope
- Unchanged
- User Interaction
- None
Products Affected
CPE | Affected | Vulnerable | Excluding | Edit |
---|---|---|---|---|
cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d35:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d50:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d30:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d45:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d55:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d40:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d60:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d65:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d70:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d66:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d51:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:-:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d100:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:-:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d131:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d25:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d140:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d120:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d130:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d110:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d60:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d55:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d15:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d40:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d35:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d45:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d75:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d65:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d90:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d100:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d50:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d30:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d70:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d80:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:r1:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:r2:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:r2-s2:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:r2-s1:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:r1-s4:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:r2-s5:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:r2-s3:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:r1-s1:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:r2-s4:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.3:-:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.4:r1-s5:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.4:r1-s7:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.4:r1-s4:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.4:r1-s6:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.4:r1-s3:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.4:r1-s1:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.4:r1-s2:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.4:-:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:17.4:r1:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.1:r1:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.1:-:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.1:r2-s1:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.1:r2-s4:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.1:r2-s2:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.1:r2:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.1:r:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.2:r:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.2:r1-s2:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.2:r1-s4:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.2:r1-s5:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.2:r1:-:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.2:r1:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.2:-:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:18.2:r1-s3:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx380:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx4000:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:* |
No
|
- |