CVE-2021-31384

Junos OS: SRX Series: Under a specific device configuration an attacker can access the devices J-Web management services from any interface, regardless of security settings protecting the service

CVSS 7.2 HIGHEPSS 1.1%CWE-1220 CWE-285 CWE-551 CWE-862 CWE-939

In short

A vulnerability in Juniper SRX devices allows attackers to access the J-Web management interface from any network connection, bypassing security rules that should block such access. This is dangerous because it gives unauthorized users potential control over the device's configuration and operations.

Technical detail

Missing authorization controls in specific SRX configurations permit unauthenticated access to J-Web administrative interfaces from any device interface, regardless of configured security policies and access control lists. An attacker can reach the management service without credentials or proper network segmentation, leading to potential unauthorized administrative access and device compromise.

Summary generated and translated by AI from the official description.

Due to a Missing Authorization weakness and Insufficient Granularity of Access Control in a specific device configuration, a vulnerability exists in Juniper Networks Junos OS on SRX Series whereby an attacker who attempts to access J-Web administrative interfaces can successfully do so from any device interface regardless of the web-management configuration and filter rules which may otherwise protect access to J-Web. This issue affects: Juniper Networks Junos OS SRX Series 20.4 version 20.4R1 and later versions prior to 20.4R2-S1, 20.4R3; 21.1 versions prior to 21.1R1-S1, 21.1R2. This issue does not affect Juniper Networks Junos OS versions prior to 20.4R1.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Affected products

Juniper Networks · Junos OS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://kb.juniper.net/