CVE-2019-0004

On Juniper ATP, the API key and the device key are logged in a file readable by authenticated local users. These keys are used for performing critical operations on the WebUI interface. This issue affects Juniper ATP 5.0 versions prior to 5.0.3.
References
Link Resource
https://kb.juniper.net/JSA10918 Vendor Advisory
Configurations

Configuration 1


Information

Published : 2019-01-15 09:29

Updated : 2020-09-29 01:49


NVD link : CVE-2019-0004

Mitre link : CVE-2019-0004

Products Affected
CWE
CWE-532

Insertion of Sensitive Information into Log File