CVE-2021-31357

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS Evolved versions prior to 20.3R2-S1-EVO Juniper Networks Junos OS Evolved 20.4 versions prior to 20.4R2-S2-EVO Juniper Networks Junos OS Evolved 21.1 versions prior to 21.1R2-EVO Juniper Networks Junos OS Evolved 21.2 versions prior to 21.2R1-S1-EVO, 21.2R2-EVO

Description A command injection vulnerability in tcpdump command processing allows an attacker with authenticated CLI access to bypass configured access protections and execute arbitrary shell commands within the context of the current user. This issue enables an attacker to bypass command authorization restrictions assigned to their specific user account and execute commands available to the privilege level for which the user is assigned. For example, a user restricted to executing specific CLI commands could exploit this issue to execute any other command available to an unrestricted admin user. This does not increase the privilege level of the user but rather bypasses any CLI command restrictions by allowing full access to the shell.

Recommendations For Juniper Networks Junos OS Evolved versions prior to 20.3R2-S1-EVO, update to version 20.3R2-S1-EVO or later. For Juniper Networks Junos OS Evolved 20.4 versions prior to 20.4R2-S2-EVO, update to version 20.4R2-S2-EVO or later. For Juniper Networks Junos OS Evolved 21.1 versions prior to 21.1R2-EVO, update to version 21.1R2-EVO or later. For Juniper Networks Junos OS Evolved 21.2 versions prior to 21.2R1-S1-EVO, 21.2R2-EVO, update to version 21.2R1-S1-EVO, 21.2R2-EVO or later. As a temporary workaround, consider restricting access to the tcpdump command until a patch is available.