CVE Vulnerabilities

CVE-2021-31381

Published: Oct 19, 2021 | Modified: Oct 26, 2021
CVSS 3.x
9.1
CRITICAL
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

A configuration weakness in the JBoss Application Server (AppSvr) component of Juniper Networks SRC Series allows a remote attacker to send a specially crafted query to cause the web server to delete files which may allow the attacker to disrupt the integrity and availability of the system.

Affected Software

Name Vendor Start Version End Version
Session_and_resource_control Juniper * 4.12.0r5 (excluding)
Session_and_resource_control Juniper 4.13.0r1 (including) 4.13.0r3 (excluding)

References