Vulnerabilities > CVE-2020-1676 - Unspecified vulnerability in Juniper Mist Cloud UI

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

juniper

NVD

Published: 2020-10-16

Updated: 2022-01-01

Summary

When SAML authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly handle SAML responses, allowing a remote attacker to modify a valid SAML response without invalidating its cryptographic signature to bypass SAML authentication security controls. This issue affects all Juniper Networks Mist Cloud UI versions prior to September 2 2020.

Vulnerable Configurations

Part	Description	Count
Application	Juniper Juniper Mist Cloud UI -	1

References

https://kb.juniper.net/JSA11072