Primary

Context

Juniper Networks Junos Space TLS/SSL Server Static Key Cipher Vulnerability

Vulnerability

Patched

A vulnerability in the TLS/SSL server of Juniper Networks Junos Space, present in all versions prior to 24.1R5, allows the use of static key ciphers. This reduces the confidentiality of on-path traffic and does not support Perfect Forward Secrecy, impacting the long-term confidentiality of encrypted communications.

Impact

The use of static key ciphers in the TLS/SSL server reduces the confidentiality of on-path traffic and long-term encrypted communications, as these ciphers do not support Perfect Forward Secrecy.

Remediation

Users can upgrade to Junos Space version 24.1R5 or later to address this vulnerability. Ensure that any clients connecting to the device do not allow negotiation of static RSA key exchange.

Added: Jan 15, 2026, 9:55 PM

Updated: Jan 15, 2026, 9:55 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

3.3

exploitability

5.0

remediation

7.9

relevance

2.1

threat

0.0

urgency

1.4

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

3.3

exploitability

5.0

remediation

7.9

relevance

2.1

threat

0.0

urgency

1.4

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Juniper Networks Junos Space TLS/SSL Server Static Key Cipher Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Juniper Networks Junos Space

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating