A remote authenticated user can execute arbitrary commands on the target system.
2010.0, 2012.0, 2012.1, 2013.1
A vulnerability was reported in Juniper Security Threat Response Manager (STRM)
A remote authenticated user can inject commands to execute arbitrary operating system commands with the privileges of the target web service. This can be exploited to gain shell access on the target device.
Execution of arbitrary code via network, User access via network
The vendor has issued a fix (2013.2.R2).