Juniper Networks Junos OS Missing Authorization Vulnerability in CLI Commands on MX Series

A missing authorization vulnerability has been identified in the CLI of Juniper Networks Junos OS on MX Series routers. This vulnerability allows local, authenticated users with low privileges to execute certain commands that can lead to a complete compromise of managed devices. Specifically, any logged-in user can issue 'request csds' CLI operational commands, which are intended for high-privileged users or those designated for Juniper Device Manager (JDM) / Connected Security Distributed Services (CSDS) operations. The affected commands can impact all aspects of devices managed through the respective MX. This vulnerability exists in Junos OS versions 24.4 releases prior to 24.4R2-S3 and 25.2 releases prior to 25.2R2. Junos OS versions before 24.4 are not affected.

Impact

Exploitation of this vulnerability allows for a complete compromise of devices managed via Junos OS on MX Series routers.

Remediation

Users can upgrade to Junos OS versions 24.4R2-S3, 25.2R2, 25.4R1, or any subsequent release. Additionally, access lists or firewall filters can be used to limit CLI access to trusted hosts and administrators, and CLI authorization can be implemented to prevent the execution of 'request csds' commands.