VDB
CVE-2017-2308
CVE-2017-2308
PUBLISHED
CVSS 5 MEDIUM
An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to read arbitrary files on the device.
EPSS 0.28% · 51.3th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
0.28%
51.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| juniper | junos_space | 0 |
| Juniper Networks | Junos Space | versions prior to 16.1R1 |
Exploit Intelligence
- From SQL injection to root shell with CVE-2016-6662 by MaYaSeVeN (github-poc)
- From SQL injection to root shell with CVE-2016-6662 by MaYaSeVeN (github-poc)
- From SQL injection to root shell with CVE-2016-6662 by MaYaSeVeN (github-poc)
- From SQL injection to root shell with CVE-2016-6662 by MaYaSeVeN (github-poc)
- boompig/cve-2016-6662 (github-poc)
- boompig/cve-2016-6662 (github-poc)
- boompig/cve-2016-6662 (github-poc)
- boompig/cve-2016-6662 (github-poc)
- 0ldSQL_MySQL_RCE_exploit.py (ver. 1.0) (CVE-2016-6662) MySQL Remote Root Code Execution / Privesc PoC Exploit For testing purposes only. Do no harm. (github-poc)
- 0ldSQL_MySQL_RCE_exploit.py (ver. 1.0) (CVE-2016-6662) MySQL Remote Root Code Execution / Privesc PoC Exploit For testing purposes only. Do no harm. (github-poc)
…and 288 more exploits
Timeline
- Jan 12, 2017 CVE Published
- Jan 16, 2018 PoC Published
- Apr 14, 2021 EPSS Score
- May 28, 2021 PoC Published
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Jul 29, 2022 PoC Published