The vulnerability of software solutions for Juniper Cloud Native Router (JCNR) and Containerized Routing Protocol Daemon (cRPD) lies in the use of hard-coded host SSH keys, which allows an attacker to execute a type of “man-in-the-middle” attack.

The vulnerability of software solutions for Juniper Cloud Native Router JCNR and Containerized Routing Protocol Daemon cRPD is related to the use of hard-coded host SSH keys. Exploiting this vulnerability allows a remote attacker to execute a “man-in-the-middle” type attack...

PT-2024-3168 · Juniper Networks · Containerized Routing Protocol Daemon +1

Name of the Vulnerable Software and Affected Versions: Juniper Cloud Native Router JCNR versions prior to 23.4 Containerized Routing Protocol Daemon cRPD versions prior to 23.4R1 Description: The issue is related to the use of hard-coded cryptographic keys in Juniper Cloud Native Router JCNR and...