Command injection

2023-04-1722:15:00

PRIOn knowledge base

www.prio-n.com

command injection

grpc network operations interface

juniper networks

junos os evolved

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.7%

JSON

An OS Command Injection vulnerability in gRPC Network Operations Interface (gNOI) server module of Juniper Networks Junos OS Evolved allows an authenticated, low privileged, network based attacker to inject shell commands and execute code. This issue affects Juniper Networks Junos OS Evolved 21.4 version 21.4R1-EVO and later versions prior to 22.1R1-EVO.

CPENameOperatorVersion
junos_os_evolvedeq21.4 r1
junos_os_evolvedeq21.4
junos_os_evolvedeq21.4
junos_os_evolvedeq21.4 r2
junos_os_evolvedeq21.4
junos_os_evolvedeq21.4
junos_os_evolvedeq21.4
junos_os_evolvedeq21.4 r3
junos_os_evolvedeq21.4
junos_os_evolvedeq21.4

Name	Operator	Version
junos_os_evolved	eq	21.4 r1
junos_os_evolved	eq	21.4
junos_os_evolved	eq	21.4
junos_os_evolved	eq	21.4 r2
junos_os_evolved	eq	21.4
junos_os_evolved	eq	21.4
junos_os_evolved	eq	21.4
junos_os_evolved	eq	21.4 r3
junos_os_evolved	eq	21.4
junos_os_evolved	eq	21.4

Rows per page:

1-10 of 111

References

supportportal.juniper.net/JSA70609