Juniper Products Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Operating Systems - Networks OS
Multiple vulnerabilities were identified in Juniper products, a remote attacker could exploit some of these vulnerabilities to trigger data manipulation and security restriction bypass on the targeted system.
Impact
- Data Manipulation
- Security Restriction Bypass
System / Technologies affected
- Juniper Networks Junos OS:
All versions before 21.4R3-S9,
versions from 22.2 before 22.2R3-S5,
versions from 22.4 before 22.4R3-S5,
versions from 23.2 before 23.2R2-S3,
versions from 23.4 before 23.4R2-S3,
versions from 24.2 before 24.2R2;
- Juniper Networks Junos OS Evolved:
All versions before 21.4R3-S9-EVO,
versions from 22.2 before 22.2R3-S5-EVO,
versions from 22.3 before 22.3R3-S4-EVO,
versions from 22.4 before 22.4R3-S5-EVO,
versions from 23.2 before 23.2R2-S3-EVO,
versions from 23.4 before 23.4R2-S3-EVO,
versions from 24.2 before 24.2R2-EVO.
- Juniper Networks Junos OS on cRPD:
version 23.4,
versions before 23.4R3-S5,
versions from 24.2 before 24.2R2;
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor. For detail, please refer to the link below:
https://supportportal.juniper.net/s/article/2024-09-30-Out-of-Cycle-Security-Advisory-Multiple-Products-RADIUS-protocol-susceptible-to-forgery-attacks-Blast-RADIUS-CVE-2024-3596?language=en_US
沒有留言:
發佈留言