Juniper Networks Releases Critical Security Update for Routers

Juniper Networks has released out-of-band security updates to address a critical security flaw that could lead to an authentication bypass in some of its routers. The vulnerability, tracked as CVE-2024-2973, carries a CVSS score of 10.0, indicating maximum severity. "An Authentication Bypass Usin...

Juniper SRX Firewalls&EX switches - PreAuth Remote Code Execution Exploit

Exploit Title: juniper-SRX-Firewalls&EX-switches PreAuth-RCE PoC Description: This code serves as both a vulnerability detector and a proof of concept for CVE-2023-36845. It executes the phpinfo function on the login page of the target device, allowing to inspect the PHP configuration. also this...

Exploit for PHP External Variable Modification in Juniper Junos

CVE-2023-36845 Description CVE-2023-36845 represen...

Juniper-SRX-Firewalls&EX-switches - (PreAuth-RCE) (PoC)

Exploit Title: juniper-SRX-Firewalls&EX-switches PreAuth-RCE PoC Description: This code serves as both a vulnerability detector and a proof of concept for CVE-2023-36845. It executes the phpinfo function on the login page of the target device, allowing to inspect the PHP configuration. also this...

Junos OS PHPRC Environment Variable Manipulation RCE

This module exploits a PHP environment variable manipulation vulnerability affecting Juniper SRX firewalls and EX switches. The affected Juniper devices run FreeBSD and every FreeBSD process can access their stdin by opening /dev/fd/0. The exploit also makes use of two useful PHP features. The...

Exploit for PHP External Variable Modification in Juniper Junos

CVE-2023-36845 Description CVE-2023-36845 represen...

PT-2023-4587 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions prior to 20.4R3-S9 Juniper Networks Junos OS version 21.1R1 and later Juniper Networks Junos OS versions prior to 21.2R3-S7 Juniper Networks Junos OS versions prior to 21.3R3-S5 Juniper Networks Junos OS...

Juniper Networks Junos OS EX and Junos OS QFX Security Vulnerabilities

Juniper Networks Junos OS EX and Juniper Networks Junos OS QFX are both switches from Juniper Networks, Inc. A security vulnerability exists in Junos OS EX and Junos OS QFX5K, which can be exploited by an attacker to trigger a denial of service by triggering a fatal error via storm control bypass...

Juniper Networks Junos OS Denial of Service Vulnerability (CNVD-2018-02840)

Juniper QFX and EX Series switches are both Juniper Networks switches.Junos OS is the set of operating systems that run on them. A denial of service vulnerability exists in Junos OS versions 14.1X53 prior to 14.1X53-D40, 15.1X53 prior to 15.1X53-D55, and 15.1R7 prior to 15.1 on Juniper QFX and EX...