PT-2026-56967 · Juniper Networks · Junos Evolved

Publicado

2026-07-09

·

Atualizado

2026-07-09

·

CVE-2026-33803

CVSS v3.1

6.5

Média

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited information disclosure and availability impact to the device.
Due to a wrong initialization, a process which should only be able to communicate internally within the device can be reached over the network via an open port. This leads to a device being inadvertently exposed and increased CPU cycles spent processing ingress packets.
This issue affects Junos OS Evolved:
  • all versions before 23.2R2-S7-EVO,
  • 23.4 versions before 23.4R2-S8-EVO,
  • 24.2 versions before 24.2R2-S5-EVO,
  • 24.4 versions before 24.4R2-S4-EVO,
  • 25.2 versions before 25.2R2-S1-EVO,
  • 25.4 versions before 25.4R1-S2-EVO.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

Enumeração de Fraquezas

Identificadores relacionados

CVE-2026-33803

Produtos afetados

Junos Evolved