Vulnerabilities > CVE-2020-1676 - Unspecified vulnerability in Juniper Mist Cloud UI

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

juniper

NVD

Published: 2020-10-16

Updated: 2022-01-01

Summary

When SAML authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly handle SAML responses, allowing a remote attacker to modify a valid SAML response without invalidating its cryptographic signature to bypass SAML authentication security controls. This issue affects all Juniper Networks Mist Cloud UI versions prior to September 2 2020.

Vulnerable Configurations

Part	Description	Count
Application	Juniper Juniper Mist Cloud UI -	1

References

https://kb.juniper.net/JSA11072