Skip to main content

Juniper Junos OS Multiple Vulnerabilities

Release Date: 14 Jul 2023 3864 Views

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

Multiple vulnerabilities were identified in Juniper Junos OS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service  condition, remote code execution, information disclosure, elevation of privilege, spoofing and security restriction bypass on the targeted system.


Impact

  • Denial of Service
  • Security Restriction Bypass
  • Elevation of Privilege
  • Remote Code Execution
  • Spoofing
  • Security Restriction Bypass

System / Technologies affected

Juniper Networks Junos OS

  • All versions prior to 19.3R3-S7;
  • All versions prior to 19.1R3-S10;
  • 19.2 versions prior to 19.2R3-S7;
  • 19.3 versions prior to 19.3R3-S8;
  • 19.4 version 19.4R3-S5 and later versions prior to 19.4R3-S9, 19.4R3-S10, 19.4R3-S11;
  • 20.1 versions prior to 20.1R3-S4;
  • 20.1 version 20.1R1, 20.1R2 and later versions;
  • 20.2 versions prior to 20.2R3-S6, 20.2R3-S7;
  • 20.3 versions prior to 20.3R3-S5, 20.3R3-S6;
  • 20.4 versions prior to 20.4R3-S5, 20.4R3-S6, 20.4R3-S7;
  • 21.1 versions prior to 21.2R3-S2, 21.1R3-S4;
  • 21.2 versions prior to 21.2R3-S2, 21.2R3-S3, 21.2R3-S5;
  • 21.3 versions prior to 21.3R3-S2, 21.3R3-S4;
  • 21.4 versions prior to 21.4R3, 21.4R3-S4;
  • 22.1 versions prior to 22.1R1-S2, 22.1R2, 22.1R3;
  • 22.2 versions prior to 22.2R2-S1, 22.2R2, 22.2R3;
  • 22.3 versions prior to 22.3R2.

Juniper Networks Junos OS Evolved

  • All versions prior to 20.4R3-S6-EVO;
  • All versions prior to 20.4R3-S7-EVO;
  • All versions prior to 21.2R3-S5-EVO;
  • All versions prior to 23.2R;
  • 21.1 versions;
  • 21.2 versions;
  • 21.3 versions;
  • 21.3 versions prior to 21.3R3-S1-EVO, 21.3R3-S4-EVO;
  • 21.4 versions prior to 21.4R3-EVO, 21.4R3-S2-EVO, 21.4R3-S4-EVO;
  • 22.1 versions prior to 22.1R3-EVO, 22.1R3-S3-EVO;
  • 22.2 versions prior to 22.2R2-S1-EVO, 22.2R2-EVO, 22.2R3-EVO;
  • 22.3 versions prior to 22.3R2-EVO;
  • 22.4 versions prior to 22.4R2-EVO.

Juniper Networks Junos OS on MX Series

  • All versions prior to 19.1R3-S10;
  • 19.2 versions prior to 19.2R3-S7;
  • 19.3 versions prior to 19.3R3-S8;
  • 19.4 versions prior to 19.4R3-S12;
  • 20.1 version 20.1R1 and later versions;
  • 20.2 versions prior to 20.2R3-S7, 20.2R3-S8;
  • 20.3 version 20.3R1 and later versions;
  • 20.4 versions prior to 20.4R3-S7;
  • 21.1 versions prior to 21.1R3-S5;
  • 21.2 versions prior to 21.2R3-S5;
  • 21.3 versions prior to 21.3R3-S4;
  • 21.4 versions prior to 21.4R3-S3, 21.4R3-S4;
  • 22.1 versions prior to 22.1R3-S2, 22.1R3-S3;
  • 22.2 versions prior to 22.2R3, 22.2R3-S1;
  • 22.3 versions prior to 22.3R2, 22.3R2-S1, 22.3R3;
  • 22.4 versions prior to 22.4R1-S2, 22.4R2.

Juniper Networks Junos OS on SRX Series

  • All versions prior to 20.2R3-S7;
  • 20.3 version 20.3R1 and later versions;
  • 20.4 versions prior to 20.4R3-S6;
  • 21.1 versions prior to 21.1R3-S5;
  • 21.2 versions prior to 21.2R3-S4;
  • 21.3 versions prior to 21.3R3-S4;
  • 21.4 versions prior to 21.4R3-S3;
  • 22.1 versions prior to 22.1R3-S1;
  • 22.2 versions prior to 22.2R3;
  • 22.3 versions prior to 22.3R2-S1, 22.3R2, 22.3R3;
  • 22.4 versions prior to 22.4R1-S2, 22.4R2;
  • 22.2 versions prior to 22.4R1-S1, 22.4R2, 22.2R3;
  • 22.3 versions prior to 22.3R2-S1, 22.3R3;
  • 22.4 versions prior to 22.4R1-S2, 22.4R2.

Juniper Networks Junos OS on SRX 4600 and SRX 5000 Series

  • 20.1 version 20.1R1 and later versions;
  • 20.2 versions prior to 20.2R3-S7;
  • 20.3 version 20.3R1 and later versions;
  • 20.4 versions prior to 20.4R3-S7;
  • 21.1 versions prior to 21.1R3-S5;
  • 21.2 versions prior to 21.2R3-S3;
  • 21.3 versions prior to 21.3R3-S3;
  • 21.4 versions prior to 21.4R3-S1;
  • 22.1 versions prior to 22.1R3;
  • 22.2 versions prior to 22.2R2;
  • 22.3 versions prior to 22.3R1-S1, 22.3R2.

Juniper Networks Junos OS Evolved on PTX10001-36MR, PTX10004, PTX10008, PTX10016 with LC1201/1202

  • 21.2 version 21.2R1-EVO and later versions;
  • 21.3 version 21.3R1-EVO and later versions;
  • 21.4 versions prior to 21.4R3-S3-EVO;
  • 22.1 version 22.1R1-EVO and later versions;
  • 22.2 versions prior to 22.2R3-S2-EVO;
  • 22.3 versions prior to 22.3R3-EVO;
  • 22.4 versions prior to 22.4R1-S2-EVO, 22.4R2-EVO.

Juniper Networks Junos OS on QFX10000

  • 20.3 version 20.3R1 and later versions;
  • 20.4 versions prior to 20.4R3-S5;
  • 21.1 versions prior to 21.1R3-S5;
  • 21.2 versions prior to 21.2R3-S5;
  • 21.3 versions prior to 21.3R3-S4;
  • 21.4 versions prior to 21.4R3-S1;
  • 22.1 versions prior to 22.1R3;
  • 22.2 versions prior to 22.2R2;
  • 22.3 versions prior to 22.3R1-S2, 22.3R2.

 


Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor. For detail, please refer to the link below:

 

 


Vulnerability Identifier


Source


Related Link