U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2018-0025

Change History

Initial Analysis by NIST 9/11/2018 9:16:17 AM

Action Type Old Value New Value
Added CVSS V3

								
							
							
						
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Added CVSS V2

								
							
							
						
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Added CWE

								
							
							
						
CWE-255
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d35:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d40:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d45:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d50:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d55:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d60:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d65:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.1x46:d66:*:*:*:*:*:*
     OR
          cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:o:juniper:junos:12.3x48:*:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:*
     OR
          cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
AND
     OR
          *cpe:2.3:o:juniper:junos:15.1x49:*:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:*
          *cpe:2.3:o:juniper:junos:15.1x49:d30:*:*:*:*:*:*
     OR
          cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*
          cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*
Changed Reference Type
http://www.securityfocus.com/bid/104719 No Types Assigned
http://www.securityfocus.com/bid/104719 Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securitytracker.com/id/1041316 No Types Assigned
http://www.securitytracker.com/id/1041316 Third Party Advisory, VDB Entry
Changed Reference Type
https://kb.juniper.net/JSA10858 No Types Assigned
https://kb.juniper.net/JSA10858 Mitigation, Vendor Advisory
Changed Reference Type
https://www.juniper.net/documentation/en_US/junos/topics/concept/firewall-user-authentication-pass-through-understanding.html No Types Assigned
https://www.juniper.net/documentation/en_US/junos/topics/concept/firewall-user-authentication-pass-through-understanding.html Vendor Advisory
Changed Reference Type
https://www.juniper.net/documentation/en_US/junos/topics/example/firewall-user-authentication-pass-through-configuring-cli.html No Types Assigned
https://www.juniper.net/documentation/en_US/junos/topics/example/firewall-user-authentication-pass-through-configuring-cli.html Vendor Advisory
Changed Reference Type
https://www.juniper.net/documentation/en_US/junos/topics/example/security-https-traffic-to-trigger-pass-through-authentication-configuring.html No Types Assigned
https://www.juniper.net/documentation/en_US/junos/topics/example/security-https-traffic-to-trigger-pass-through-authentication-configuring.html Vendor Advisory