Detections
Analytics
Juniper NSM < 2012.2R14 OpenSSL Multiple Vulnerabilities (JSA10851)
medium Nessus Plugin ID 109406
Language:
Synopsis
The remote host is affected by multiple vulnerabilities.Description
The remote host is running a version of NSM (Network and Security Manager) Server that is prior to 2012.2R14. It is, therefore, affected by multiple vulnerabilities in the bundled version of OpenSSL.Solution
Upgrade to Juniper NSM version 2012.2R14 or later.See Also
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10851
Plugin Details
Severity: Medium
ID: 109406
File Name: juniper_nsm_jsa10851.nasl
Version: 1.6
Type: remote
Family: Misc.
Published: 4/27/2018
Updated: 10/16/2024
Configuration: Enable paranoid mode, Enable thorough checks
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N
CVSS Score Source: CVE-2017-3735
CVSS v3
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 5.7
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
CVSS Score Source: CVE-2017-3736
Vulnerability Information
CPE: cpe:/a:juniper:network_and_security_manager
Required KB Items: Juniper_NSM_VerDetected, Settings/ParanoidReport
Exploit Ease: No known exploits are available
Patch Publication Date: 12/7/2017
Vulnerability Publication Date: 12/7/2017
Reference Information
CVE: CVE-2017-3735, CVE-2017-3736, CVE-2017-3737, CVE-2017-3738
BID: 100515, 101666, 102103, 102118
IAVA: 2018-A-0134