Search
Close this search box.
An illustration depicting a digital fortress built from stylized bricks, surrounded by padlock symbols, clouds, and circuit elements, representing cybersecurity. Plants peek out from behind the walls, signifying growth or sustainability within the secure environment. This secure network design offers robust protection against cyberthreats.

Critical Juniper SRX Firewalls and EX Switches RCE Vulnerability Exposed

Juniper Vulnerability

Juniper Networks recently released updates to fix a critical remote code execution (RCE) vulnerability in its SRX Series switches and firewalls. This flaw, identified as CVE-2024-21591, scores a high 9.8 on the CVSS system.

Critical RCE bug in Juniper’s firewalls and switches is forewarned.

Understanding the Vulnerability

An out-of-bounds write vulnerability in the J-Web of Junos OS SRX Series and EX series allows an unauthenticated attacker to execute code remotely and gain root access. This issue stems from using an insecure function that permits memory overwriting.

Celebrating Cybersecurity Awareness Month with NIST&#039 and our blog series for cybersecurity awareness month 2023

Affected Versions and Fixes

The issue impacts several versions but has fixes in 20.4R3-S9, 21.2R3, 21.3R5, 21.4R3, 22.2R3/S2, 22.4R2/S2, 23.4R1, and 23.2R2 onwards. Affected versions include:

  • Junos OS before 20.4R3-S9
  • Junos OS 21.2 before 21.2R3-S7
  • Junos OS 21.3 before 21.3R3-S5
  • Junos OS 21.4 before 21.4R3-S5
  • Junos OS 22.1 before 22.1R3-S4
  • Junos OS 22.2 before 22.2R3-S3
  • Junos OS 22.3 before 22.3R3-S2
  • Junos OS 22.4 before 22.4R2-S2 and 22.4R3

Home of CyberSecurity and Compliance

Recommended Actions

Until fixes are applied, Juniper advises disabling J-Web or restricting access to trusted hosts.

Critical Unity Connection bug, according to Cisco, allows attackers to gain root.

Addressing a High-Severity Bug

Juniper Networks also fixed a high-severity DoS vulnerability (CVE-2024-21611, CVSS score: 7.5) in Junos OS and Junos OS Evolved. This vulnerability could be exploited by an unauthenticated attacker.

Previous Exploits

Last year, threat actors exploited several vulnerabilities in Juniper’s SRX firewalls and EX switches, although there is currently no evidence that these new vulnerabilities are being exploited.

About DoD Cybersecurity Blogs 

Source and Credits

Lean More About DoD Cybersecurity, Cyber Threats and Related Contents

Learn why IDShield offers the best security and value.

www.sentrypc.com

PureVPN - Best VPN and Your Trusted Partner for Internet Freedom

🔥BIG SAVINGS 82% Off PureVPN.🔥 Secure Your Online Privacy Now. LIMITED OFFER!

🔥 SAVE 82% OFF 🔥 on PureVPN! Limited Offer – Enhance Your Digital Security Today.
Click To View Offer on PureVPN Website

NordVPN - Your Passport to Unrestricted Freedom

Embrace Digital Freedom and Security with NordVPN.
🔥Up To 63% Off🔥

Start Today Your Journey to a Safer Internet Today!
Click To View Offer on NordVPN Website

Protect Your Data with DeleteMe the Go-To-Solution

DeleteMe is Your Guardian Against Identity Theft and Online Exposure!
🔥Take 20% Off - Click Here to View Code🔥
Malwarebytes Browser Guard filters out annoying ads and scams while blocking trackers that spy on you.
Malwarebytes for Home | Anti-Malware Premium | Free Trial Download
Try Ultahost - The best place to get secure, inexpensive shared web hosting services!
View deals and specials on Used Macs, Mac hardware, Mac accessories, and more. Shop now!

DoD Cybersecurity protecting your digital world one secure step at a time with DoD Cybersecurity Blogs.
DoDCybersecurityblogs.com | All Rights Reserved | Designed by Omar Solomon

Skip to content