A missing authorization vulnerability has been identified in the internal virtual routing and forwarding (VRF) of Juniper Networks Junos OS Evolved. This vulnerability allows a local, low-privileged user to gain root privileges, leading to a system compromise. Any low-privileged user capable of sending packets over the internal VRF can execute arbitrary Junos commands and modify the configuration, thereby compromising the system. The issue affects all versions of Junos OS Evolved prior to 22.2R3-S7-EVO, as well as specific versions within the 22.4, 23.2, 23.4, 24.2, and 24.4 release series.
Exploitation of this vulnerability allows a low-privileged user to gain root privileges, execute arbitrary Junos commands, and modify system configurations, leading to a complete system compromise.
Users can upgrade to Junos OS Evolved versions 22.2R3-S7-EVO, 22.4R3-S7-EVO, 23.2R2-S4-EVO, 23.4R2-S5-EVO, 24.2R2-S1-EVO, 24.4R1-S2-EVO, 24.4R2-EVO, 25.2R1-EVO and all subsequent releases. As a workaround, access lists or firewall filters can be used to limit CLI access to trusted hosts and administrators, and shell and network permissions should only be granted to trusted users.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
