CVE-2023-36847

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS on EX Series versions prior to 20.4R3-S8 Juniper Networks Junos OS on EX Series version 21.1R1 and later Juniper Networks Junos OS on EX Series versions prior to 21.2R3-S6 Juniper Networks Junos OS on EX Series versions prior to 21.3R3-S5 Juniper Networks Junos OS on EX Series versions prior to 21.4R3-S4 Juniper Networks Junos OS on EX Series versions prior to 22.1R3-S3 Juniper Networks Junos OS on EX Series versions prior to 22.2R3-S1 Juniper Networks Junos OS on EX Series versions prior to 22.3R2-S2, 22.3R3 Juniper Networks Junos OS on EX Series versions prior to 22.4R2-S1, 22.4R3

Description A Missing Authentication for Critical Function issue in Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to installAppPackage.php that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of integrity for a certain part of the file system, which may allow chaining to other vulnerabilities.

Recommendations For versions prior to 20.4R3-S8, update to version 20.4R3-S8 or later. For version 21.1R1 and later, update to a version that includes the fix for this issue. For versions prior to 21.2R3-S6, update to version 21.2R3-S6 or later. For versions prior to 21.3R3-S5, update to version 21.3R3-S5 or later. For versions prior to 21.4R3-S4, update to version 21.4R3-S4 or later. For versions prior to 22.1R3-S3, update to version 22.1R3-S3 or later. For versions prior to 22.2R3-S1, update to version 22.2R3-S1 or later. For versions prior to 22.3R2-S2, 22.3R3, update to version 22.3R2-S2, 22.3R3 or later. For versions prior to 22.4R2-S1, 22.4R3, update to version 22.4R2-S1, 22.4R3 or later. As a temporary workaround, consider restricting access to the installAppPackage.php endpoint until a patch is available.