WID-SEC-W-2024-0064

WID-SEC-W-2024-0064 PUBLISHED CVSS 8.699999809265137 HIGH

JUNOS ist das "Juniper Network Operating System", das in Juniper Appliances verwendet wird. SRX Series Services Gateways ist ein Next-Generation Anti-Threat Firewall von Juniper. Bei den Switches der Juniper EX-Serie handelt es sich um Access- und Aggregations-/Core-Layer-Switches. Die Switches der QFX-Serie von Juniper sichern und automatisieren Netzwerke in Rechenzentren. Die Juniper MX-Serie ist eine Produktfamilie von Routern.

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
	Juniper MX Series
	Juniper EX Series
	Juniper Junos Space 24.1R2
	Juniper QFX Series 5000
	Juniper Junos Space <24.1R2
	Juniper JUNOS
	Juniper EX Series EX9200
	Juniper JUNOS PTX Series
	Juniper EX Series 4100
	Juniper SRX Series
	ACX7100
	Juniper EX Series 4600
	Juniper JUNOS Evolved
	Juniper JUNOS ACX7024
	Juniper EX Series 4400

Exploit Intelligence

Simplified Version of Cryptography Attack based on Birthday Paradox: Sweet32 (CVE-2016-2183) (github-poc)
https://supportportal.juniper.net/JSA75758 (circl)
https://supportportal.juniper.net/JSA75740 (circl)
https://supportportal.juniper.net/JSA75233 (circl)
https://supportportal.juniper.net/JSA75721 (circl)
https://supportportal.juniper.net/JSA75723 (circl)
https://supportportal.juniper.net/JSA75725 (circl)
https://supportportal.juniper.net/JSA75727 (circl)
https://supportportal.juniper.net/JSA75729 (circl)
https://supportportal.juniper.net/JSA75730 (circl)

…and 50 more exploits

Timeline

Jun 28, 2021 PoC Published
Dec 11, 2021 PoC Published
Dec 13, 2021 PoC Published
Jun 7, 2022 PoC Published
Sep 16, 2022 PoC Published
Nov 21, 2023 PoC Published
Dec 8, 2023 PoC Published
Dec 11, 2023 PoC Published
Jan 10, 2024 CVE Published
Mar 1, 2024 PoC Published
Apr 5, 2024 PoC Published
Jul 17, 2024 PoC Published

References

…and 11 more

Open in Interactive Console →