Juniper Networks Junos Space Arbitrary File Download Vulnerability

Vulnerability

A vulnerability allowing arbitrary file downloads has been identified in the web interface of Juniper Networks Junos Space, affecting all versions prior to 24.1R3. This vulnerability allows a network-based authenticated attacker to use a crafted GET request to access any file on the file system. Exploitation of this vulnerability could lead to unauthorized access to sensitive information typically restricted from low-privileged users.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive files, potentially exposing information that should be restricted from low-privileged users.

Added: Oct 9, 2025, 4:22 PM

Updated: Oct 9, 2025, 4:22 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Juniper Networks Junos Space Arbitrary File Download Vulnerability

Vulnerability

Impact

Affected Products

Juniper Networks Junos Space

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating