What is Juniper Networks? #
Juniper Networks designs and markets IT networking products, such as routers, switches and IT security products. The Juniper SRX is a high-performance, low-latency next-generation firewall for distributed enterprise campuses and small and midsized data centers. Juniper EX-Series is a series of Ethernet network switches.
Latest Juniper Networks vulnerabilities #
On January 12th, 2024, Juniper Networks disclosed a serious vulnerability in Juniper SRX firewalls and EX switches.
The issue, identified as CVE-2024-21591, allows remote attackers to create a denial-of-service (DoS) condition or to execute arbitrary code with root privileges on vulnerable devices.
This vulnerability has a CVSS score of 9.8 out of 10, indicating that this is a critical vulnerability. According to their disclosure, Juniper Networks is not aware of any active exploitation of this vulnerability.
What is the impact? #
Upon successful exploitation of these vulnerabilities, attackers can execute arbitrary code on the vulnerable system with root privileges. In general, this means that a successful attack would result in complete system compromise.
Are updates or workarounds available? #
Juniper has released a software update to address this vulnerability. This update available through their support portal and other update distribution mechanisms.
How do I find potentially vulnerable Juniper devices with runZero? #
From the Asset Inventory, use the following query to locate assets that may be running the vulnerable operating system in your network:
hw:"Juniper EX" OR hw:"Juniper SRX"
