CVE-2013-6618

jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary commands via the rsargs parameter in an exec action.

CVSS v2.0 9.0 HIGH

9.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:S/C:C/I:C/A:C

Exploitability : 8.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10560	Vendor Advisory
http://secunia.com/advisories/54731	Vendor Advisory
http://www.exploit-db.com/exploits/29544
http://www.securityfocus.com/bid/62305	Exploit
http://www.securitytracker.com/id/1029016
http://www.senseofsecurity.com.au/advisories/SOS-13-003	Exploit URL Repurposed
https://exchange.xforce.ibmcloud.com/vulnerabilities/87011
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10560	Vendor Advisory
http://secunia.com/advisories/54731	Vendor Advisory
http://www.exploit-db.com/exploits/29544
http://www.securityfocus.com/bid/62305	Exploit
http://www.securitytracker.com/id/1029016
http://www.senseofsecurity.com.au/advisories/SOS-13-003	Exploit URL Repurposed
https://exchange.xforce.ibmcloud.com/vulnerabilities/87011

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:juniper:junos::::::::
	cpe:2.3:o:juniper:junos:10.0:::::::*
	cpe:2.3:o:juniper:junos:10.1:::::::*
	cpe:2.3:o:juniper:junos:10.2:::::::*
	cpe:2.3:o:juniper:junos:10.3:::::::*
	cpe:2.3:o:juniper:junos:11.4:::::::*
	cpe:2.3:o:juniper:junos:12.1:::::::*
	cpe:2.3:o:juniper:junos:12.2:::::::*
	cpe:2.3:o:juniper:junos:12.3:::::::*

History

No history.

Information

Published : 2013-11-05 20:55

Updated : 2025-04-11 00:51

NVD link : CVE-2013-6618

Mitre link : CVE-2013-6618

CVE.ORG link : CVE-2013-6618

JSON object : View

Products Affected

juniper

junos

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2013-6618", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-11-05T20:55:30.243", "references": [{"url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10560", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/54731", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.exploit-db.com/exploits/29544", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/62305", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id/1029016", "source": "cve@mitre.org"}, {"url": "http://www.senseofsecurity.com.au/advisories/SOS-13-003", "tags": ["Exploit", "URL Repurposed"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87011", "source": "cve@mitre.org"}, {"url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10560", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/54731", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.exploit-db.com/exploits/29544", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/62305", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1029016", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.senseofsecurity.com.au/advisories/SOS-13-003", "tags": ["Exploit", "URL Repurposed"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87011", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary commands via the rsargs parameter in an exec action."}, {"lang": "es", "value": "jsdm / ajax / port.php de J-Web en Juniper Junos anterior 10.4R13, 11.4 anterior a 11.4R, 12,.1 anterior a 12.1R5 anterior a 12.2R3 y 12.3 antes 12.3R1 permite a usuarios remotos autenticados ejecutar comandos arbitrarios a trav\u00e9s del par\u00e1metro rsargs en una acci\u00f3n exec."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87B7BB4C-BF3D-4E88-9422-816CB5ECE523", "versionEndIncluding": "10.4"}, {"criteria": "cpe:2.3:o:juniper:junos:10.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8FFDD73-F4A7-42BC-8CEF-4E7CC469CF28"}, {"criteria": "cpe:2.3:o:juniper:junos:10.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3546BA8D-CEA4-4C95-B18F-4AC112195008"}, {"criteria": "cpe:2.3:o:juniper:junos:10.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DC12ED6-463F-4576-80F4-E1B697B579B7"}, {"criteria": "cpe:2.3:o:juniper:junos:10.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37235C6B-B7B8-41EC-A1D2-336D8BAD9DBF"}, {"criteria": "cpe:2.3:o:juniper:junos:11.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41543223-0FA9-4CBE-8DEC-717CE5FFED79"}, {"criteria": "cpe:2.3:o:juniper:junos:12.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B40B8FD6-A597-4845-8E8E-63EFDF606006"}, {"criteria": "cpe:2.3:o:juniper:junos:12.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FB9541A-2570-459A-87D6-5341C67B8EC8"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E014A0D-0054-4EBA-BA1F-035B74BD822F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}