CVE-2020-1622 : Vulnerability Insights and Analysis
Discover details of CVE-2020-1622 affecting Junos OS Evolved. Learn about the vulnerability, impact, affected systems, exploitation, and mitigation steps to secure your systems.
A local, authenticated user with shell can obtain hashed values of passwords and shared secrets via EvoSharedObjStore in Junos OS Evolved prior to 19.1R1.
Understanding CVE-2020-1622
Juniper Networks reported a vulnerability affecting Junos OS Evolved, allowing sensitive information leakage.
What is CVE-2020-1622?
The CVE-2020-1622 vulnerability in Junos OS Evolved enables a local authenticated user to access hashed login passwords and shared secrets through EvoSharedObjStore before version 19.1R1.
The Impact of CVE-2020-1622
This vulnerability poses a medium severity risk with a CVSS base score of 5.5, primarily affecting confidentiality.
Technical Details of CVE-2020-1622
Junos OS Evolved is subject to information leakage via EvoSharedObjStore.
Vulnerability Description
- Type: Improper Control of a Resource Through its Lifetime (CWE-664)
- Method: Shell access to obtain hashed values
Affected Systems and Versions
- Product: Junos OS Evolved
- Vendor: Juniper Networks
- Versions Affected: All versions prior to 19.1R1-EVO
Exploitation Mechanism
- Requires local authenticated access
- Exploitation unknown at the time
Mitigation and Prevention
Immediate updates are crucial to address this vulnerability.
Immediate Steps to Take
- Update to versions 19.1R1-EVO, 19.2R1-EVO, or later
Long-Term Security Practices
- Regularly review and update system security
- Enforce strong password policies
- Monitor privileged access
- Implement multi-factor authentication
Patching and Updates
- Apply the provided software releases to fix the issue.