Juniper Networks Junos OS SRX Series Exposure of Sensitive Information Vulnerability

A vulnerability allowing exposure of sensitive information to unauthorized users has been identified in the command-line interface (CLI) of Juniper Networks Junos OS on SRX Series devices. This issue affects all versions prior to 21.4R3-S8, as well as certain versions in the 22.x and 23.x ranges. The vulnerability allows a local, low-privileged user with access to the Junos CLI to view the contents of sensitive files on the file system. By executing specific commands related to advanced anti-malware or security intelligence services, these users can access protected files containing sensitive information that could be used to further impact the system.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive files, potentially allowing a low-privileged user to gather information that could be used to compromise the system or escalate privileges.