Improper Certificate Validation in Juniper Networks Junos OS SRX Series Application Identification Signature Update Client

Improper Certificate Validation in Juniper Networks Junos OS SRX Series Application Identification Signature Update Client

CVE-2019-0054 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

An Improper Certificate Validation weakness in the SRX Series Application Identification (app-id) signature update client of Juniper Networks Junos OS allows an attacker to perform Man-in-the-Middle (MitM) attacks which may compromise the integrity and confidentiality of the device. This issue affects: Juniper Networks Junos OS 15.1X49 versions prior to 15.1X49-D120 on SRX Series devices. No other versions of Junos OS are affected.

Learn more about our Cis Benchmark Audit For Juniper.