Lucene search
HistorySep 27, 2023 - 3:18 p.m.
CVE-2023-36851
cve-2023-36851
vulnerability
juniper networks
junos os
srx series
authentication
file system integrity
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
6.6
Confidence
High
EPSS
0.006
Percentile
78.9%
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity.
With a specific request to
webauth_operation.php
that doesn’t require authentication, an attacker is able to upload and download arbitrary files via J-Web, leading to a loss of
integrity or confidentiality, which may allow chaining to other vulnerabilities.
This issue affects Juniper Networks Junos OS on SRX Series:
21.2 versions prior to 21.2R3-S8;
- 21.4
versions prior to
21.4R3-S6;
- 22.1
versions prior to
22.1R3-S5;
- 22.2
versions prior to
22.2R3-S3;
- 22.3
versions prior to
22.3R3-S2;
- 22.4 versions prior to 22,4R2-S2, 22.4R3;
- 23.2 versions prior to
23.2R1-S2, 23.2R2.
Affected configurations
Node
juniperex2200Match-
ORjuniperex2200-cMatch-
ORjuniperex2200-vcMatch-
ORjuniperex2300Match-
ORjuniperex2300-24mpMatch-
ORjuniperex2300-24pMatch-
ORjuniperex2300-24tMatch-
ORjuniperex2300-48mpMatch-
ORjuniperex2300-48pMatch-
ORjuniperex2300-48tMatch-
ORjuniperex2300-cMatch-
ORjuniperex2300mMatch-
ORjuniperex3200Match-
ORjuniperex3300Match-
ORjuniperex3300-vcMatch-
ORjuniperex3400Match-
ORjuniperex4200Match-
ORjuniperex4200-vcMatch-
ORjuniperex4300Match-
ORjuniperex4300-24pMatch-
ORjuniperex4300-24p-sMatch-
ORjuniperex4300-24tMatch-
ORjuniperex4300-24t-sMatch-
ORjuniperex4300-32fMatch-
ORjuniperex4300-32f-dcMatch-
ORjuniperex4300-32f-sMatch-
ORjuniperex4300-48mpMatch-
ORjuniperex4300-48mp-sMatch-
ORjuniperex4300-48pMatch-
ORjuniperex4300-48p-sMatch-
ORjuniperex4300-48tMatch-
ORjuniperex4300-48t-afiMatch-
ORjuniperex4300-48t-dcMatch-
ORjuniperex4300-48t-dc-afiMatch-
ORjuniperex4300-48t-sMatch-
ORjuniperex4300-48tafiMatch-
ORjuniperex4300-48tdcMatch-
ORjuniperex4300-48tdc-afiMatch-
ORjuniperex4300-mpMatch-
ORjuniperex4300-vcMatch-
ORjuniperex4300mMatch-
ORjuniperex4400Match-
ORjuniperex4500Match-
ORjuniperex4500-vcMatch-
ORjuniperex4550Match-
ORjuniperex4550-vcMatch-
ORjuniperex4550\/vcMatch-
ORjuniperex4600Match-
ORjuniperex4600-vcMatch-
ORjuniperex4650Match-
ORjuniperex6200Match-
ORjuniperex6210Match-
ORjuniperex8200Match-
ORjuniperex8200-vcMatch-
ORjuniperex8208Match-
ORjuniperex8216Match-
ORjuniperex9200Match-
ORjuniperex9204Match-
ORjuniperex9208Match-
ORjuniperex9214Match-
ORjuniperex9250Match-
ORjuniperex9251Match-
ORjuniperex9253Match-
ORjunipersrx100Match-
ORjunipersrx110Match-
ORjunipersrx1400Match-
ORjunipersrx1500Match-
ORjunipersrx210Match-
ORjunipersrx220Match-
ORjunipersrx240Match-
ORjunipersrx240h2Match-
ORjunipersrx240mMatch-
ORjunipersrx300Match-
ORjunipersrx320Match-
ORjunipersrx340Match-
ORjunipersrx3400Match-
ORjunipersrx345Match-
ORjunipersrx3600Match-
ORjunipersrx380Match-
ORjunipersrx4000Match-
ORjunipersrx4100Match-
ORjunipersrx4200Match-
ORjunipersrx4600Match-
ORjunipersrx5000Match-
ORjunipersrx5400Match-
ORjunipersrx550Match-
ORjunipersrx550_hmMatch-
ORjunipersrx550mMatch-
ORjunipersrx5600Match-
ORjunipersrx5800Match-
ORjunipersrx650Match-
juniperjunosMatch21.2-
ORjuniperjunosMatch21.2r1
ORjuniperjunosMatch21.2r1-s1
ORjuniperjunosMatch21.2r1-s2
ORjuniperjunosMatch21.2r2
ORjuniperjunosMatch21.2r2-s1
ORjuniperjunosMatch21.2r2-s2
ORjuniperjunosMatch21.2r3
ORjuniperjunosMatch21.2r3-s1
ORjuniperjunosMatch21.2r3-s2
ORjuniperjunosMatch21.2r3-s3
ORjuniperjunosMatch21.2r3-s4
ORjuniperjunosMatch21.2r3-s5
ORjuniperjunosMatch21.2r3-s6
ORjuniperjunosMatch21.2r3-s7
ORjuniperjunosMatch21.4-
ORjuniperjunosMatch21.4r1
ORjuniperjunosMatch21.4r1-s1
ORjuniperjunosMatch21.4r1-s2
ORjuniperjunosMatch21.4r2
ORjuniperjunosMatch21.4r2-s1
ORjuniperjunosMatch21.4r2-s2
ORjuniperjunosMatch21.4r3
ORjuniperjunosMatch21.4r3-s1
ORjuniperjunosMatch21.4r3-s2
ORjuniperjunosMatch21.4r3-s3
ORjuniperjunosMatch21.4r3-s4
ORjuniperjunosMatch21.4r3-s5
ORjuniperjunosMatch22.1r1
ORjuniperjunosMatch22.1r1-s1
ORjuniperjunosMatch22.1r1-s2
ORjuniperjunosMatch22.1r2
ORjuniperjunosMatch22.1r2-s1
ORjuniperjunosMatch22.1r2-s2
ORjuniperjunosMatch22.1r3
ORjuniperjunosMatch22.1r3-s1
ORjuniperjunosMatch22.1r3-s2
ORjuniperjunosMatch22.1r3-s3
ORjuniperjunosMatch22.1r3-s4
ORjuniperjunosMatch22.2r1
ORjuniperjunosMatch22.2r1-s1
ORjuniperjunosMatch22.2r1-s2
ORjuniperjunosMatch22.2r2
ORjuniperjunosMatch22.2r2-s1
ORjuniperjunosMatch22.2r2-s2
ORjuniperjunosMatch22.2r3
ORjuniperjunosMatch22.2r3-s1
ORjuniperjunosMatch22.2r3-s2
ORjuniperjunosMatch22.3r1
ORjuniperjunosMatch22.3r1-s1
ORjuniperjunosMatch22.3r1-s2
ORjuniperjunosMatch22.3r2
ORjuniperjunosMatch22.3r2-s1
ORjuniperjunosMatch22.3r3
ORjuniperjunosMatch22.3r3-s1
ORjuniperjunosMatch22.4r1
ORjuniperjunosMatch22.4r1-s1
ORjuniperjunosMatch22.4r1-s2
ORjuniperjunosMatch22.4r2
ORjuniperjunosMatch22.4r2-s1
ORjuniperjunosMatch23.2r1
ORjuniperjunosMatch23.2r1-s1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| juniper | junos | 22.2 | cpe:/o:juniper:junos:22.2:r1-s1:: |
| juniper | junos | 21.4 | cpe:/o:juniper:junos:21.4:-:: |
| juniper | junos | 22.3 | cpe:/o:juniper:junos:22.3:r2:: |
| juniper | junos | 23.2 | cpe:/o:juniper:junos:23.2:r1:: |
| juniper | junos | 21.2 | cpe:/o:juniper:junos:21.2:r3-s2:: |
| juniper | junos | 21.2 | cpe:/o:juniper:junos:21.2:r1-s2:: |
| juniper | junos | 22.1 | cpe:/o:juniper:junos:22.1:r3-s2:: |
| juniper | junos | 22.1 | cpe:/o:juniper:junos:22.1:r3-s3:: |
| juniper | junos | 22.2 | cpe:/o:juniper:junos:22.2:r2-s2:: |
| juniper | junos | 22.1 | cpe:/o:juniper:junos:22.1:r2:: |
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"SRX Series"
],
"product": "Junos OS",
"vendor": "Juniper Networks",
"versions": [
{
"lessThan": "21.2R3-S8",
"status": "affected",
"version": "21.2",
"versionType": "semver"
},
{
"lessThan": "21.4R3-S6",
"status": "affected",
"version": "21.4",
"versionType": "semver"
},
{
"lessThan": "22.1R3-S5",
"status": "affected",
"version": "22.1",
"versionType": "semver"
},
{
"lessThan": "22.2R3-S3",
"status": "affected",
"version": "22.2",
"versionType": "semver"
},
{
"lessThan": "22.3R3-S2",
"status": "affected",
"version": "22.3",
"versionType": "semver"
},
{
"lessThan": "22.4R2-S2, 22.4R3",
"status": "affected",
"version": "22.4",
"versionType": "semver"
},
{
"lessThan": "23.2R1-S2, 23.2R2",
"status": "affected",
"version": "23.2",
"versionType": "semver"
}
]
}
]References
Related
attackerkb
attackerkb
CVE-2023-36851
2023-09-27 00:00:00
cisa_kev
cisa_kev
nvd
nvd
CVE-2023-36851
2023-09-27 15:18:54
cvelist
cvelist
prion
prion
Authentication flaw
2023-09-27 15:18:00
thn
thn
Juniper Networks Releases Urgent Junos OS Updates for High-Severity Flaws
2024-01-30 05:01:00
CISA Sets a Deadline - Patch Juniper Junos OS Flaws Before November 17
2023-11-14 06:03:00
nessus
nessus
Juniper Junos OS Pre-Auth RCE (JSA72300)
2023-08-25 00:00:00
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
6.6
Confidence
High
EPSS
0.006
Percentile
78.9%
Related for CVE-2023-36851