Juniper Networks Junos OS SRX Series Improper Certificate Verification Vulnerability Allowing Interception of Sensitive Communication

A vulnerability exists in the J-Web interface of Juniper Networks Junos OS on SRX Series devices, due to improper verification of server certificates. This flaw allows a man-in-the-middle (PITM) attacker to intercept communications between the SRX device and the Security Director (SD) cloud, potentially accessing and modifying confidential information such as credentials. The vulnerability affects all Junos OS versions prior to 22.4R3-S9, as well as specific 23.2, 23.4, 24.2, 24.4, and 25.2 versions.

Impact

Exploitation of this vulnerability could lead to unauthorized interception and modification of sensitive communications between SRX devices and the SD cloud, including access to confidential information and credentials.

Remediation

Users can upgrade to Junos OS versions 22.4R3-S9, 23.2R2-S6, 23.4R2-S7, 24.2R2-S3, 24.4R2-S2, 25.2R1-S2, 25.2R2, 25.4R1, or any subsequent release. For guidance on which releases vulnerabilities are fixed, refer to Juniper's KB16765.