An Improper Following of a Certificate's Chain of Trust vulnerability in J-Web of Juniper Networks Junos OS on SRX Series allows a PITM to intercept the communication of the device and get access to confidential information and potentially modify it. When an SRX device is provisioned to connect to Security Director (SD) cloud, it doesn't perform sufficient verification of the received server certificate. This allows a PITM to intercept the communication between the SRX and SD cloud and access credentials and other sensitive information. This issue affects Junos OS: * all versions before 22.4R3-S9, * 23.2 versions before 23.2R2-S6, * 23.4 versions before 23.4R2-S7, * 24.2 versions before 24.2R2-S3, * 24.4 versions before 24.4R2-S2, * 25.2 versions before 25.2R1-S2, 25.2R2.
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:M/U:XJuniper Junos
OSJuniper22.423.223.424.224.425.2< 22.4Juniper Srx1500
HWJuniperwszystkie wersjeJuniper Srx1600
HWJuniperwszystkie wersjeJuniper Srx2300
HWJuniperwszystkie wersjeJuniper Srx300
HWJuniperwszystkie wersjeJuniper Srx320
HWJuniperwszystkie wersjeJuniper Srx340
HWJuniperwszystkie wersjeJuniper Srx345
HWJuniperwszystkie wersjeJuniper Srx380
HWJuniperwszystkie wersjeJuniper Srx4100
HWJuniperwszystkie wersjeJuniper Srx4120
HWJuniperwszystkie wersjeJuniper Srx4200
HWJuniperwszystkie wersjeJuniper Srx4300
HWJuniperwszystkie wersjeJuniper Srx4600
HWJuniperwszystkie wersjeJuniper Srx4700
HWJuniperwszystkie wersjeJuniper Srx5400
HWJuniperwszystkie wersjeJuniper Srx5600
HWJuniperwszystkie wersjeJuniper Srx5800
HWJuniperwszystkie wersje
Related vulnerabilities
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SR...
Out-of-bounds Write w J-Web Juniper Junos OS — RCE z uprawnieniami root
This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials ...
A buffer size validation vulnerability in the overlayd service of Juniper Networks Junos OS may allow an unaut...
An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Rout...