CVE-2022-22251

HIGH Year: 2022
CVSS v3 Score
7.8
High
Weakness Type
CWE-257
View all →

Vulnerability Description

On cSRX Series devices software permission issues in the container filesystem and stored files combined with storing passwords in a recoverable format in Juniper Networks Junos OS allows a local, low-privileged attacker to elevate their permissions to take control of any instance of a cSRX software deployment. This issue affects Juniper Networks Junos OS 20.2 version 20.2R1 and later versions prior to 21.2R1 on cSRX Series.

Related Vulnerabilities

CVE-2017-9942

HIGH
CVSS:7.8(High)

A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that could allow an attacker with local access to the SiPass integrated server or SiPass integrated client to po...

CWE-2572017

CVE-2023-21726

HIGH
CVSS:7.8(High)

Windows Credential Manager User Interface Elevation of Privilege Vulnerability

CWE-2572023

CVE-2021-27485

HIGH
CVSS:7.5(High)

ZOLL Defibrillator Dashboard, v prior to 2.2,The application allows users to store their passwords in a recoverable format, which could allow an attacker to retrieve the credentials from the web brows...

CWE-2572021

CVE-2021-35050

HIGH
CVSS:7.5(High)

User credentials stored in a recoverable format within Fidelis Network and Deception CommandPost. In the event that an attacker gains access to the CommandPost, these values could be decoded and used ...

CWE-2572021

CVE-2023-38738

HIGH
CVSS:8.1(High)

IBM OpenPages with Watson 8.3 and 9.0 could provide weaker than expected security in a OpenPages environment using Native authentication. If OpenPages is using Native authentication an attacker with a...

CWE-2572023

CVE-2023-5627

HIGH
CVSS:7.5(High)

A vulnerability has been identified in NPort 6000 Series, making the authentication mechanism vulnerable. This vulnerability arises from the incorrect implementation of sensitive information protectio...

CWE-2572023