Wednesday, May 7, 2025
HomeCyber AttackJunos OS Flaw Allows Attackers to Flood System and Expose Sensitive Data

Junos OS Flaw Allows Attackers to Flood System and Expose Sensitive Data

Published on

SIEM as a Service

Follow Us on Google News

Three new vulnerabilities have been discovered in Junos OS: password disclosure, MAC address validation bypass, and Time-of-check Time-of-use (TOCTOU) Race Condition. The severity of these vulnerabilities ranges between 5.3 (Medium) to 6.1 (Medium).

Juniper Networks has released patches and security advisories for addressing these vulnerabilities. It is worth mentioning that there was a command injection vulnerability previously discovered in the SRX and EX series firewalls that affected more than 15,000 firewalls worldwide.

Vulnerability details

CVE-2023-44187: Passwords Disclosure

This vulnerability can be exploited by an authenticated threat actor with shell access to execute the ‘file copy’ command on the Junos OS evolved, which allows viewing passwords supplied on the CLI command line. 

- Advertisement - Google News

These credentials can later be used by threat actors for various malicious purposes, which include unauthorized remote access to vulnerable systems. The severity of this vulnerability has been given as 5.9 (Medium).

ProductsAffected versionsFixed in Versions
Juniper Networks Junos OS EvolvedAll versions prior to 20.4R3-S7-EVO;21.1 versions 21.1R1-EVO and later;21.2 versions prior to 21.2R3-S5-EVO;21.3 versions prior to 21.3R3-S4-EVO;21.4 versions prior to 21.4R3-S4-EVO;22.1 versions prior to 22.1R3-S2-EVO;22.2 versions prior to 22.2R2-EVO.Junos OS Evolved: 20.4R3-S7-EVO, 21.2R3-S5-EVO, 21.3R3-S4-EVO, 21.4R3-S4-EVO, 22.1R3-S2-EVO, 22.2R2-EVO, 22.3R1-EVO, and all subsequent releases

CVE-2023-44189: MAC Address Validation Bypass

This particular vulnerability exists in insufficient validation in MAC address validation used blocking MAC addresses not intended to reach the adjacent LANs. This vulnerability allows a network-adjacent threat actor to bypass MAC address checking, causing a loop and congestion condition.

The severity of this vulnerability has been given as 6.1 (Medium). However, this vulnerability exists in the Junos OS Evolved: PTX10003 Series routers. 

ProductsAffected versionsFixed in Versions
Junos OS Evolved on PTX10003 SeriesAll versions prior to 21.4R3-S4-EVO;22.1 versions prior to 22.1R3-S3-EVO;22.2 version 22.2R1-EVO and later versions;22.3 versions prior to 22.3R2-S2-EVO, 22.3R3-S1-EVO;22.4 versions prior to 22.4R2-S1-EVO, 22.4R3-EVO;23.2 versions prior to 23.2R2-EVO.Junos OS Evolved: 21.4R3-S4-EVO, 22.1R3-S3-EVO, 22.3R2-S2-EVO, 22.3R3-S1-EVO, 22.4R2-S1-EVO, 22.4R3-EVO, 23.2R2-EVO, 23.3R1-EVO, and all subsequent releases.

CVE-2023-44188: Junos OS jkdsd Crash

This is a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability, which allows network-based authenticated threat actors to flood the system with multiple telemetry requests, which could cause the Junos Kernel Debugging Streaming Daemon (jkdsd) process to crash, resulting in a Denial of Service (DoS). 

Furthermore, this denial-of-service condition persists due to the continued receipt and processing of multiple telemetry requests, which repeatedly crashes the jkdsd process. The severity of this vulnerability has been given as 5.3 (Medium).

ProductsAffected versionsFixed in Versions
Juniper Networks Junos OS20.4 versions prior to 20.4R3-S9;21.1 versions 21.1R1 and later;21.2 versions prior to 21.2R3-S6;21.3 versions prior to 21.3R3-S5;21.4 versions prior to 21.4R3-S5;22.1 versions prior to 22.1R3-S4;22.2 versions prior to 22.2R3-S2;22.3 versions prior to 22.3R2-S1, 22.3R3-S1;22.4 versions prior to 22.4R2-S2, 22.4R3;23.1 versions prior to 23.1R2;23.2 versions prior to 23.2R2.Junos OS: 20.4R3-S9, 21.2R3-S6, 21.4R3-S5, 22.1R3-S4, 22.2R3-S2, 22.3R2-S1, 22.3R2-S2, 22.3R3-S1, 22.4R2-S2, 22.4R3, 23.1R2, 23.2R1, 23.2R2, 23.3R1, and all subsequent

Users of these products are recommended to upgrade to the fixed versions to prevent these vulnerabilities from getting exploited.

Protect yourself from vulnerabilities using Patch Manager Plus to patch over 850 third-party applications quickly. Take advantage of the free trial to ensure 100% security.

Eswar
Eswar
Eswar is a Cyber security content editor with a passion for creating captivating and informative content. With years of experience under his belt in Cyber Security, he is covering Cyber Security News, technology and other news.

Latest articles

Severe Kibana Flaw Allowed Attackers to Run Arbitrary Code

A newly disclosed security vulnerability in Elastic’s Kibana platform has put thousands of businesses...

IT Worker from Computacenter Let Girlfriend Into Deutsche Bank’s Restricted Areas

A former information technology manager has filed a whistleblower lawsuit alleging a major security...

NSO Group Ordered to Pay $168 Million to WhatsApp in US Spyware Verdict

A federal jury in California has ordered Israeli spyware maker NSO Group to pay...

BFDOOR Malware Targets Organizations to Establish Long-Term Persistence

The BPFDoor malware has emerged as a significant threat targeting domestic and international organizations,...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Severe Kibana Flaw Allowed Attackers to Run Arbitrary Code

A newly disclosed security vulnerability in Elastic’s Kibana platform has put thousands of businesses...

IT Worker from Computacenter Let Girlfriend Into Deutsche Bank’s Restricted Areas

A former information technology manager has filed a whistleblower lawsuit alleging a major security...

NSO Group Ordered to Pay $168 Million to WhatsApp in US Spyware Verdict

A federal jury in California has ordered Israeli spyware maker NSO Group to pay...