CVE-2023-44187

Name of the Vulnerable Software and Affected Versions Junos OS Evolved versions prior to 20.4R3-S7-EVO Junos OS Evolved version 21.1R1-EVO and later Junos OS Evolved versions prior to 21.2R3-S5-EVO Junos OS Evolved versions prior to 21.3R3-S4-EVO Junos OS Evolved versions prior to 21.4R3-S4-EVO Junos OS Evolved versions prior to 22.1R3-S2-EVO Junos OS Evolved versions prior to 22.2R2-EVO

Description An Exposure of Sensitive Information issue in the 'file copy' command of Junos OS Evolved allows a local, authenticated attacker with shell access to view passwords supplied on the CLI command-line. These credentials can then be used to provide unauthorized access to the remote system.

Recommendations For versions prior to 20.4R3-S7-EVO, update to version 20.4R3-S7-EVO or later. For version 21.1R1-EVO and later, update to version 21.2R3-S5-EVO or later. For versions prior to 21.2R3-S5-EVO, update to version 21.2R3-S5-EVO or later. For versions prior to 21.3R3-S4-EVO, update to version 21.3R3-S4-EVO or later. For versions prior to 21.4R3-S4-EVO, update to version 21.4R3-S4-EVO or later. For versions prior to 22.1R3-S2-EVO, update to version 22.1R3-S2-EVO or later. For versions prior to 22.2R2-EVO, update to version 22.2R2-EVO or later.