Skip to main content

Juniper Junos OS Multiple Vulnerabilities

Release Date: 12 Jan 2024 4558 Views

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

Multiple vulnerabilities were identified in Juniper Junos OS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, security restriction bypass and data manipulation on the targeted system.


Impact

  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • Data Manipulation

System / Technologies affected

Juniper Networks Junos OS

  • 21.1 versions earlier than 21.1R3-S4
  • 21.1 versions earlier than 21.1R3-S5
  • 21.2 versions earlier than 21.2R3
  • 21.2 versions earlier than 21.2R3-S3
  • 21.2 versions earlier than 21.2R3-S4
  • 21.2 versions earlier than 21.2R3-S5
  • 21.2 versions earlier than 21.2R3-S6 on SRX Series
  • 21.2 versions earlier than 21.2R3-S6
  • 21.2 versions earlier than 21.2R3-S7
  • 21.2R1-EVO and later versions
  • 21.3 versions earlier than 21.3R2-S1, 21.3R3
  • 21.3 versions earlier than 21.3R3-S3
  • 21.3 versions earlier than 21.3R3-S4
  • 21.3 versions earlier than 21.3R3-S5 on SRX Series
  • 21.3 versions earlier than 21.3R3-S5
  • 21.3 versions earlier than 21.3R3-S5-EVO
  • 21.4 versions earlier than 21.4R2
  • 21.4 versions earlier than 21.4R3
  • 21.4 versions earlier than 21.4R3-EVO
  • 21.4 versions earlier than 21.4R3-S3
  • 21.4 versions earlier than 21.4R3-S4
  • 21.4 versions earlier than 21.4R3-S5 on SRX Series
  • 21.4 versions earlier than 21.4R3-S5
  • 21.4 versions earlier than 21.4R3-S5-EVO
  • 21.4-EVO versions earlier than 21.4R3-EVO
  • 21.4-EVO versions earlier than 21.4R3-S5-EVO
  • 21.4-EVO versions earlier than 21.4R3-S6-EVO
  • 21.4R3 versions earlier than 21.4R3-S4
  • 22.1 versions earlier than 22.1R2
  • 22.1 versions earlier than 22.1R2-S2, 22.1R3
  • 22.1 versions earlier than 22.1R3
  • 22.1 versions earlier than 22.1R3-EVO
  • 22.1 versions earlier than 22.1R3-S1
  • 22.1 versions earlier than 22.1R3-S2
  • 22.1 versions earlier than 22.1R3-S3 on SRX Series
  • 22.1 versions earlier than 22.1R3-S3
  • 22.1 versions earlier than 22.1R3-S4
  • 22.1 versions earlier than 22.1R3-S4-EVO
  • 22.1-EVO versions earlier than 22.1R3-EVO
  • 22.1-EVO versions earlier than 22.1R3-S2-EVO
  • 22.1-EVO versions earlier than 22.1R3-S4-EVO
  • 22.1-EVO versions earlier than 22.1R3-S5-EVO
  • 22.1R3 versions earlier than 22.1R3-S3
  • 22.2 versions earlier than 22.2R2
  • 22.2 versions earlier than 22.2R2-S1, 22.2R3
  • 22.2 versions earlier than 22.2R2-S2, 22.2R3
  • 22.2 versions earlier than 22.2R2-S2-EVO, 22.2R3-EVO
  • 22.2 versions earlier than 22.2R3
  • 22.2 versions earlier than 22.2R3-EVO
  • 22.2 versions earlier than 22.2R3-S1
  • 22.2 versions earlier than 22.2R3-S2
  • 22.2 versions earlier than 22.2R3-S3 on SRX Series
  • 22.2 versions earlier than 22.2R3-S3
  • 22.2 versions earlier than 22.2R3-S3-EVO
  • 22.2-EVO versions earlier than 22.2R2-S1-EVO, 22.2R3-EVO;
  • 22.2-EVO versions earlier than 22.2R3-EVO
  • 22.2-EVO versions earlier than 22.2R3-S2-EVO
  • 22.2R2 versions earlier than 22.2R3-S1
  • 22.3 versions earlier than 22.3R2, 22.3R3
  • 22.3 versions earlier than 22.3R2
  • 22.3 versions earlier than 22.3R2-EVO, 22.3R3-EVO
  • 22.3 versions earlier than 22.3R2-S1, 22.3R3
  • 22.3 versions earlier than 22.3R2-S2, 22.3R3
  • 22.3 versions earlier than 22.3R3-EVO
  • 22.3 versions earlier than 22.3R3-S1 on SRX Series
  • 22.3 versions earlier than 22.3R3-S1
  • 22.3 versions earlier than 22.3R3-S1-EVO
  • 22.3 versions earlier than 22.3R3-S2
  • 22.3-EVO versions earlier than 22.3R2-EVO
  • 22.3-EVO versions later than 22.3R1-EVO
  • 22.4 versions earlier than 22.4R1-S2, 22.4R2
  • 22.4 versions earlier than 22.4R1-S2, 22.4R2-S2, 22.4R3
  • 22.4 versions earlier than 22.4R2
  • 22.4 versions earlier than 22.4R2-EVO, 22.4R3-EVO
  • 22.4 versions earlier than 22.4R2-S1, 22.4R3
  • 22.4 versions earlier than 22.4R2-S2, 22.4R3 on SRX Series
  • 22.4 versions earlier than 22.4R2-S2, 22.4R3
  • 22.4 versions earlier than 22.4R2-S2-EVO, 22.4R3-EVO
  • 22.4-EVO versions earlier than 22.4R2-EVO
  • 22.4-EVO versions earlier than 22.4R2-S2-EVO, 22.4R3-EVO
  • 23.1 versions earlier than 23.1R2
  • 23.2 versions earlier than 23.2R1-S1, 23.2R2
  • 23.2 versions earlier than 23.2R1-S1-EVO, 23.2R2-EVO
  • 23.2 versions earlier than 23.2R1-S2, 23.2R2
  • 23.2 versions earlier than 23.2R2
  • 23.2-EVO versions earlier than 23.2R1-S2-EVO, 23.2R2-EVO
  • All versions earlier than 20.4R3-S3
  • All versions earlier than 20.4R3-S6
  • All versions earlier than 20.4R3-S7
  • All versions earlier than 20.4R3-S7-EVO
  • All versions earlier than 20.4R3-S8 on SRX Series
  • All versions earlier than 20.4R3-S8
  • All versions earlier than 20.4R3-S9
  • All versions earlier than 21.2R3-S3
  • All versions earlier than 21.2R3-S6
  • All versions earlier than 21.2R3-S7-EVO
  • All versions earlier than 21.3R3-S5-EVO

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:


Vulnerability Identifier


Source


Related Link