Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30, 12.1X47 before 12.1X47-D15, and 12.3X48 before 12.3X48-D10 on SRX series devices does not properly enforce the log-out-on-disconnect feature when configured in the [system port console] stanza, which allows physically proximate attackers to reconnect to the console port and gain administrative access by leveraging access to the device.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Junos | Juniper | 12.1x44 (including) | 12.1x44 (including) |
| Junos | Juniper | 12.1x44-d10 (including) | 12.1x44-d10 (including) |
| Junos | Juniper | 12.1x44-d15 (including) | 12.1x44-d15 (including) |
| Junos | Juniper | 12.1x44-d20 (including) | 12.1x44-d20 (including) |
| Junos | Juniper | 12.1x44-d25 (including) | 12.1x44-d25 (including) |
| Junos | Juniper | 12.1x44-d30 (including) | 12.1x44-d30 (including) |
| Junos | Juniper | 12.1x44-d35 (including) | 12.1x44-d35 (including) |
| Junos | Juniper | 12.1x44-d40 (including) | 12.1x44-d40 (including) |
| Junos | Juniper | 12.1x44-d45 (including) | 12.1x44-d45 (including) |
| Junos | Juniper | 12.1x45 (including) | 12.1x45 (including) |
| Junos | Juniper | 12.1x45-d10 (including) | 12.1x45-d10 (including) |
| Junos | Juniper | 12.1x45-d15 (including) | 12.1x45-d15 (including) |
| Junos | Juniper | 12.1x45-d20 (including) | 12.1x45-d20 (including) |
| Junos | Juniper | 12.1x45-d30 (including) | 12.1x45-d30 (including) |
| Junos | Juniper | 12.1x46 (including) | 12.1x46 (including) |
| Junos | Juniper | 12.1x46-d10 (including) | 12.1x46-d10 (including) |
| Junos | Juniper | 12.1x46-d15 (including) | 12.1x46-d15 (including) |
| Junos | Juniper | 12.1x46-d20 (including) | 12.1x46-d20 (including) |
| Junos | Juniper | 12.1x46-d25 (including) | 12.1x46-d25 (including) |
| Junos | Juniper | 12.1x47 (including) | 12.1x47 (including) |
| Junos | Juniper | 12.1x47-d10 (including) | 12.1x47-d10 (including) |
| Junos | Juniper | 12.1x48 (including) | 12.1x48 (including) |