CVE-2022-22248 An Incorrect Permission Assignment vulnerability in Juniper Networks Junos OS Evolved allows a low-privileged local user to modify the contents of a configuration file which could cause another user to execute arbitrary commands.

This issue was assigned the ID CVE-2018-15473 and was publicly announced on January 16, 2018. If a user is authenticated with a weak password and has the ability to modify configuration files on the device, this issue can be exploited to gain remote code execution. This issue was assigned the ID CVE-2018-15478 and was publicly announced on January 16, 2018. This issue was assigned the ID CVE-2018-15481 and was publicly announced on January 16, 2018. This issue was assigned the ID CVE-2018-15504 and was publicly announced on January 26, 2018. This issue was assigned the ID CVE-2018-15506 and was publicly announced on January 26, 2018. This issue was assigned the ID CVE-2018-15610 and was publicly announced on January 26, 2018. This issue was assigned the ID CVE-2018-15612 and was publicly announced on January 26, 2018. This issue was assigned the ID CVE-2018-15613 and was publicly announced on January 26, 2018. This issue was assigned the ID CVE-2018-15614 and was publicly announced on January 26, 2018.

Description of the issue

This issue has been publicly announced and is being tracked by MITRE.

Software Description:

The issue allows a remote attacker to execute arbitrary code on vulnerable installations of BlueStacks. Software Description:

The issue allows a remote attacker to execute arbitrary code on vulnerable installations of BlueStacks.

Timeline

Published on: 10/18/2022 03:15:00 UTC
Last modified on: 10/18/2022 12:01:00 UTC

References

• https://kb.juniper.net/JSA69905
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22248