{"cve":{"cve_id":"CVE-2019-0042","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.0029,"epss_percentile":0.2048,"epss_as_of":"2026-06-23","description":"Juniper Identity Management Service (JIMS) for Windows versions prior to 1.1.4 may send an incorrect message to associated SRX services gateways. This may allow an attacker with physical access to an existing domain connected Windows system to bypass SRX firewall policies, or trigger a Denial of Service (DoS) condition for the network.","published_at":"2019-04-10T20:13:51.587000Z","last_modified_at":null,"cvss_v3_score":5.7,"cvss_v3_vector":"CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H","cvss_v3_severity":"MEDIUM","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-404","CWE-305","CWE-669"],"nvd_references":["https://kb.juniper.net/JSA10934"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:11:46.170747Z"},"effective_severity":"MEDIUM","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.0","metrics":[{"metric":"AV","name":"Attack Vector","value":"P","value_label":"Physical"},{"metric":"AC","name":"Attack Complexity","value":"H","value_label":"High"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"C","value_label":"Changed"},{"metric":"C","name":"Confidentiality","value":"N","value_label":"None"},{"metric":"I","name":"Integrity","value":"L","value_label":"Low"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"juniper-networks","vendor_name":"Juniper Networks","product_slug":"juniper-identity-management-service","product_name":"Juniper Identity Management Service","version_start":"unspecified","version_start_inclusive":true,"version_end":"1.1.4","version_end_inclusive":false,"cpe23_uri":"cve5:juniper-networks:juniper-identity-management-service:unspecified:1.1.4"}],"exploit_refs":[],"news":[],"references":[{"url":"https://kb.juniper.net/JSA10934","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2019-04-10T20:13:51.587000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T16:59:07.582454Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T16:59:07.582454Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T16:59:07.582454Z","label":"CVSS score revised","source":"cvelistv5"}]}