Plaintext Storage of Organization Authentication Credentials in Log Files

Plaintext Storage of Organization Authentication Credentials in Log Files

CVE-2019-0032 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A password management issue exists where the Organization authentication username and password were stored in plaintext in log files. A locally authenticated attacker who is able to access these stored plaintext credentials can use them to login to the Organization. Affected products are: Juniper Networks Service Insight versions from 15.1R1, prior to 18.1R1. Service Now versions from 15.1R1, prior to 18.1R1.

Learn more about our Cis Benchmark Audit For Juniper.