CVE-2021-0231

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on SRX and vSRX Series versions 19.3 prior to 19.3R2-S6, 19.3R3-S1 Juniper Networks Junos OS on SRX and vSRX Series versions 19.4 prior to 19.4R2-S4, 19.4R3 Juniper Networks Junos OS on SRX and vSRX Series versions 20.1 prior to 20.1R1-S4, 20.1R2 Juniper Networks Junos OS on SRX and vSRX Series versions 20.2 prior to 20.2R1-S3, 20.2R2

Description: A path traversal vulnerability in the Juniper Networks SRX and vSRX Series may allow an authenticated J-web user to read sensitive system files.

Recommendations: For versions 19.3 prior to 19.3R2-S6, 19.3R3-S1, update to version 19.3R2-S6 or 19.3R3-S1 or later. For versions 19.4 prior to 19.4R2-S4, 19.4R3, update to version 19.4R2-S4 or 19.4R3 or later. For versions 20.1 prior to 20.1R1-S4, 20.1R2, update to version 20.1R1-S4 or 20.1R2 or later. For versions 20.2 prior to 20.2R1-S3, 20.2R2, update to version 20.2R1-S3 or 20.2R2 or later.