CVE-2021-31356

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS Evolved versions prior to 20.4R3-S1-EVO Juniper Networks Junos OS Evolved versions 21.1-EVO and 21.2-EVO

Description A command injection issue in command processing allows an attacker with authenticated CLI access to bypass access protections and execute arbitrary shell commands within the context of the current user. This issue enables an attacker to bypass command authorization restrictions and execute commands available to their assigned privilege level. For example, a restricted super-user could exploit this to execute any command available to an unrestricted admin user. This does not increase the user's privilege level but bypasses CLI command restrictions, allowing full access to the shell.

Recommendations For versions prior to 20.4R3-S1-EVO, update to version 20.4R3-S1-EVO or later. For versions 21.1-EVO and 21.2-EVO, there is no information about a newer version that contains a fix for this issue.