CVE-2024-30407

Name of the Vulnerable Software and Affected Versions: Juniper Cloud Native Router (JCNR) versions prior to 23.4 Containerized Routing Protocol Daemon (cRPD) versions prior to 23.4R1

Description: The issue is related to the use of hard-coded cryptographic keys in Juniper Cloud Native Router (JCNR) and Containerized Routing Protocol Daemon (cRPD) products. This allows an attacker to perform Person-in-the-Middle (PitM) attacks, resulting in the complete compromise of the container. The presence of hard-coded SSH host keys on the container enables a PitM attacker to intercept SSH traffic without being detected.

Recommendations: For Juniper Cloud Native Router (JCNR) versions prior to 23.4, update to version 23.4 or later. For Containerized Routing Protocol Daemon (cRPD) versions prior to 23.4R1, update to version 23.4R1 or later. As a temporary workaround, consider restricting access to the SSH service until a patch is available.