Juniper Junos OS Multiple Vulnerabilities

Release Date: 14 Jul 2023 3777 Views

RISK: Medium Risk

Medium Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

Multiple vulnerabilities were identified in Juniper Junos OS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service  condition, remote code execution, information disclosure, elevation of privilege, spoofing and security restriction bypass on the targeted system.

Impact

  • Denial of Service
  • Security Restriction Bypass
  • Elevation of Privilege
  • Remote Code Execution
  • Spoofing
  • Security Restriction Bypass

System / Technologies affected

Juniper Networks Junos OS

  • All versions prior to 19.3R3-S7;
  • All versions prior to 19.1R3-S10;
  • 19.2 versions prior to 19.2R3-S7;
  • 19.3 versions prior to 19.3R3-S8;
  • 19.4 version 19.4R3-S5 and later versions prior to 19.4R3-S9, 19.4R3-S10, 19.4R3-S11;
  • 20.1 versions prior to 20.1R3-S4;
  • 20.1 version 20.1R1, 20.1R2 and later versions;
  • 20.2 versions prior to 20.2R3-S6, 20.2R3-S7;
  • 20.3 versions prior to 20.3R3-S5, 20.3R3-S6;
  • 20.4 versions prior to 20.4R3-S5, 20.4R3-S6, 20.4R3-S7;
  • 21.1 versions prior to 21.2R3-S2, 21.1R3-S4;
  • 21.2 versions prior to 21.2R3-S2, 21.2R3-S3, 21.2R3-S5;
  • 21.3 versions prior to 21.3R3-S2, 21.3R3-S4;
  • 21.4 versions prior to 21.4R3, 21.4R3-S4;
  • 22.1 versions prior to 22.1R1-S2, 22.1R2, 22.1R3;
  • 22.2 versions prior to 22.2R2-S1, 22.2R2, 22.2R3;
  • 22.3 versions prior to 22.3R2.

Juniper Networks Junos OS Evolved

  • All versions prior to 20.4R3-S6-EVO;
  • All versions prior to 20.4R3-S7-EVO;
  • All versions prior to 21.2R3-S5-EVO;
  • All versions prior to 23.2R;
  • 21.1 versions;
  • 21.2 versions;
  • 21.3 versions;
  • 21.3 versions prior to 21.3R3-S1-EVO, 21.3R3-S4-EVO;
  • 21.4 versions prior to 21.4R3-EVO, 21.4R3-S2-EVO, 21.4R3-S4-EVO;
  • 22.1 versions prior to 22.1R3-EVO, 22.1R3-S3-EVO;
  • 22.2 versions prior to 22.2R2-S1-EVO, 22.2R2-EVO, 22.2R3-EVO;
  • 22.3 versions prior to 22.3R2-EVO;
  • 22.4 versions prior to 22.4R2-EVO.

Juniper Networks Junos OS on MX Series

  • All versions prior to 19.1R3-S10;
  • 19.2 versions prior to 19.2R3-S7;
  • 19.3 versions prior to 19.3R3-S8;
  • 19.4 versions prior to 19.4R3-S12;
  • 20.1 version 20.1R1 and later versions;
  • 20.2 versions prior to 20.2R3-S7, 20.2R3-S8;
  • 20.3 version 20.3R1 and later versions;
  • 20.4 versions prior to 20.4R3-S7;
  • 21.1 versions prior to 21.1R3-S5;
  • 21.2 versions prior to 21.2R3-S5;
  • 21.3 versions prior to 21.3R3-S4;
  • 21.4 versions prior to 21.4R3-S3, 21.4R3-S4;
  • 22.1 versions prior to 22.1R3-S2, 22.1R3-S3;
  • 22.2 versions prior to 22.2R3, 22.2R3-S1;
  • 22.3 versions prior to 22.3R2, 22.3R2-S1, 22.3R3;
  • 22.4 versions prior to 22.4R1-S2, 22.4R2.

Juniper Networks Junos OS on SRX Series

  • All versions prior to 20.2R3-S7;
  • 20.3 version 20.3R1 and later versions;
  • 20.4 versions prior to 20.4R3-S6;
  • 21.1 versions prior to 21.1R3-S5;
  • 21.2 versions prior to 21.2R3-S4;
  • 21.3 versions prior to 21.3R3-S4;
  • 21.4 versions prior to 21.4R3-S3;
  • 22.1 versions prior to 22.1R3-S1;
  • 22.2 versions prior to 22.2R3;
  • 22.3 versions prior to 22.3R2-S1, 22.3R2, 22.3R3;
  • 22.4 versions prior to 22.4R1-S2, 22.4R2;
  • 22.2 versions prior to 22.4R1-S1, 22.4R2, 22.2R3;
  • 22.3 versions prior to 22.3R2-S1, 22.3R3;
  • 22.4 versions prior to 22.4R1-S2, 22.4R2.

Juniper Networks Junos OS on SRX 4600 and SRX 5000 Series

  • 20.1 version 20.1R1 and later versions;
  • 20.2 versions prior to 20.2R3-S7;
  • 20.3 version 20.3R1 and later versions;
  • 20.4 versions prior to 20.4R3-S7;
  • 21.1 versions prior to 21.1R3-S5;
  • 21.2 versions prior to 21.2R3-S3;
  • 21.3 versions prior to 21.3R3-S3;
  • 21.4 versions prior to 21.4R3-S1;
  • 22.1 versions prior to 22.1R3;
  • 22.2 versions prior to 22.2R2;
  • 22.3 versions prior to 22.3R1-S1, 22.3R2.

Juniper Networks Junos OS Evolved on PTX10001-36MR, PTX10004, PTX10008, PTX10016 with LC1201/1202

  • 21.2 version 21.2R1-EVO and later versions;
  • 21.3 version 21.3R1-EVO and later versions;
  • 21.4 versions prior to 21.4R3-S3-EVO;
  • 22.1 version 22.1R1-EVO and later versions;
  • 22.2 versions prior to 22.2R3-S2-EVO;
  • 22.3 versions prior to 22.3R3-EVO;
  • 22.4 versions prior to 22.4R1-S2-EVO, 22.4R2-EVO.

Juniper Networks Junos OS on QFX10000

  • 20.3 version 20.3R1 and later versions;
  • 20.4 versions prior to 20.4R3-S5;
  • 21.1 versions prior to 21.1R3-S5;
  • 21.2 versions prior to 21.2R3-S5;
  • 21.3 versions prior to 21.3R3-S4;
  • 21.4 versions prior to 21.4R3-S1;
  • 22.1 versions prior to 22.1R3;
  • 22.2 versions prior to 22.2R2;
  • 22.3 versions prior to 22.3R1-S2, 22.3R2.

 

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor. For detail, please refer to the link below:

 

 

Vulnerability Identifier

Source

Related Link

Related Tags

Junos OSDenial of ServiceElevation of PrivilegeRemote Code ExecutionSpoofingSecurity Restriction BypassInformation Disclosure

Share with

Previous

Ghostscript Remote Code Execution Vulnerability

13 Jul 2023 4596 Views

Next

Adobe ColdFusion Remote Code Execution Vulnerability

18 Jul 2023 3507 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY