CVE-2026-48694

Name of the Vulnerable Software and Affected Versions FastNetMon Community Edition versions prior to 1.3.0

Description A configuration injection issue exists in the Juniper router integration plugin. In the file src/juniper plugin/fastnetmon juniper.php, the variable IP ATTACK (received from argv[1]) is interpolated into Juniper NETCONF set-configuration commands without validation or sanitization. An attacker capable of controlling the IP address string can inject arbitrary Juniper CLI configuration commands by embedding newline characters. This allows for the modification of the router's routing table, firewall filters, user accounts, or any other configuration element accessible via NETCONF, potentially leading to full router compromise.

Recommendations Update to a version later than 1.2.9. As a temporary workaround, restrict access to the src/juniper plugin/fastnetmon juniper.php plugin to minimize the risk of exploitation.