CVE-2023-36847
5.3
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Exploitability: 3.9 / Impact: 1.4
Source: NVD
Description
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity.
With a specific request to installAppPackage.php that doesn't require authentication an attacker is able to upload arbitrary files via J-Web, leading to a loss of
integrity
for a certain
part of the file system, which may allow chaining to other vulnerabilities.
This issue affects Juniper Networks Junos OS on EX Series:
* All versions prior to 20.4R3-S8;
* 21.1 versions 21.1R1 and later;
* 21.2 versions prior to 21.2R3-S6;
* 21.3 versions
prior to
21.3R3-S5;
* 21.4 versions
prior to
21.4R3-S4;
* 22.1 versions
prior to
22.1R3-S3;
* 22.2 versions
prior to
22.2R3-S1;
* 22.3 versions
prior to
22.3R2-S2, 22.3R3;
* 22.4 versions
prior to
22.4R2-S1, 22.4R3.
Affected (91)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 20.4 |
| Running on/with | Platform Versions |
|---|---|
Juniper Ex2200 | All versions |
Juniper Ex2200 C | All versions |
Juniper Ex2200 Vc | All versions |
Juniper Ex2300 | All versions |
Juniper Ex2300 24mp | All versions |
Juniper Ex2300 24p | All versions |
Juniper Ex2300 24t | All versions |
Juniper Ex2300 48mp | All versions |
Juniper Ex2300 48p | All versions |
Juniper Ex2300 48t | All versions |
Juniper Ex2300 C | All versions |
Juniper Ex2300m | All versions |
Juniper Ex3200 | All versions |
Juniper Ex3300 | All versions |
Juniper Ex3300 Vc | All versions |
Juniper Ex3400 | All versions |
Juniper Ex4200 | All versions |
Juniper Ex4200 Vc | All versions |
Juniper Ex4300 | All versions |
Juniper Ex4300 24p | All versions |
Juniper Ex4300 24p S | All versions |
Juniper Ex4300 24t | All versions |
Juniper Ex4300 24t S | All versions |
Juniper Ex4300 32f | All versions |
Juniper Ex4300 32f Dc | All versions |
Juniper Ex4300 32f S | All versions |
Juniper Ex4300 48mp | All versions |
Juniper Ex4300 48mp S | All versions |
Juniper Ex4300 48p | All versions |
Juniper Ex4300 48p S | All versions |
Juniper Ex4300 48t | All versions |
Juniper Ex4300 48t Afi | All versions |
Juniper Ex4300 48t Dc | All versions |
Juniper Ex4300 48t Dc Afi | All versions |
Juniper Ex4300 48t S | All versions |
Juniper Ex4300 48tafi | All versions |
Juniper Ex4300 48tdc | All versions |
Juniper Ex4300 48tdc Afi | All versions |
Juniper Ex4300 Mp | All versions |
Juniper Ex4300 Vc | All versions |
Juniper Ex4300m | All versions |
Juniper Ex4400 | All versions |
Juniper Ex4500 | All versions |
Juniper Ex4500 Vc | All versions |
Juniper Ex4550 | All versions |
Juniper Ex4550 Vc | All versions |
Juniper Ex4550/vc | All versions |
Juniper Ex4600 | All versions |
Juniper Ex4600 Vc | All versions |
Juniper Ex4650 | All versions |
Juniper Ex6200 | All versions |
Juniper Ex6210 | All versions |
Juniper Ex8200 | All versions |
Juniper Ex8200 Vc | All versions |
Juniper Ex8208 | All versions |
Juniper Ex8216 | All versions |
Juniper Ex9200 | All versions |
Juniper Ex9204 | All versions |
Juniper Ex9208 | All versions |
Juniper Ex9214 | All versions |
Juniper Ex9250 | All versions |
Juniper Ex9251 | All versions |
Juniper Ex9253 | All versions |
References (3)
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
US Government Resource
Timeline
No history available yet.