CVE-2024-21591

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 20.4R3-S9 Junos OS 21.2 versions prior to 21.2R3-S7 Junos OS 21.3 versions prior to 21.3R3-S5 Junos OS 21.4 versions prior to 21.4R3-S5 Junos OS 22.1 versions prior to 22.1R3-S4 Junos OS 22.2 versions prior to 22.2R3-S3 Junos OS 22.3 versions prior to 22.3R3-S2 Junos OS 22.4 versions prior to 22.4R2-S2, 22.4R3

Description An Out-of-bounds Write vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS), or Remote Code Execution (RCE) and obtain root privileges on the device. This issue is caused by the use of an insecure function allowing an attacker to overwrite arbitrary memory. The estimated number of potentially affected devices worldwide is over 11,500, with the majority located in South Korea, followed by the USA, Indonesia, and India. There are no reports of this vulnerability being exploited in real-world attacks.

Recommendations For Junos OS versions prior to 20.4R3-S9, update to 20.4R3-S9 or later. For Junos OS 21.2 versions prior to 21.2R3-S7, update to 21.2R3-S7 or later. For Junos OS 21.3 versions prior to 21.3R3-S5, update to 21.3R3-S5 or later. For Junos OS 21.4 versions prior to 21.4R3-S5, update to 21.4R3-S5 or later. For Junos OS 22.1 versions prior to 22.1R3-S4, update to 22.1R3-S4 or later. For Junos OS 22.2 versions prior to 22.2R3-S3, update to 22.2R3-S3 or later. For Junos OS 22.3 versions prior to 22.3R3-S2, update to 22.3R3-S2 or later. For Junos OS 22.4 versions prior to 22.4R2-S2, 22.4R3, update to 22.4R2-S2, 22.4R3 or later. As a temporary workaround, consider disabling the J-Web interface until a patch is available. Restrict access to the J-Web interface to minimize the risk of exploitation.