← back
CVE-2024-39512

Junos OS Evolved: User is not logged out when the console cable is disconnected

CVSS 7 HIGHEPSS 0.2%CWE-1263
In short

When someone physically disconnects the console cable from a Juniper device, the logged-in user session is not automatically ended. This allows an attacker with physical access to reconnect and take over an active user account, potentially gaining admin privileges.

Technical detail

An improper physical access control vulnerability in Junos OS Evolved's console port allows an unauthenticated attacker with physical proximity to resume an active console session when the cable is disconnected and reconnected. The vulnerability stems from the device failing to terminate user sessions upon console cable disconnection, enabling privilege escalation if the disconnected session had elevated permissions. Affected versions include 23.2R2-EVO before 23.2R2-S1-EVO and 23.4R1-EVO before 23.4R2-EVO.

Summary generated and translated by AI from the official description.
An Improper Physical Access Control vulnerability in the console port control of Juniper Networks Junos OS Evolved allows an attacker with physical access to the device to get access to a user account. When the console cable is disconnected, the logged in user is not logged out. This allows a malicious attacker with physical access to the console to resume a previous session and possibly gain administrative privileges. This issue affects Junos OS Evolved: * from 23.2R2-EVO before 23.2R2-S1-EVO,  * from 23.4R1-EVO before 23.4R2-EVO.
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
Juniper Networks · Junos OS Evolved

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://supportportal.juniper.net/JSA82977