What is the severity of CVE-2021-0219?

CVE-2021-0219 has a severity rating of critical due to the potential for local authenticated attackers to execute commands with root privileges.

How do I fix CVE-2021-0219?

To fix CVE-2021-0219, update your Junos OS to a patched version as outlined in Juniper's vulnerability advisory.

Which versions of Junos OS are affected by CVE-2021-0219?

CVE-2021-0219 affects Junos OS versions 17.3, 17.4, 18.1, 18.2, 18.3, 18.4, 19.1, 19.2, 19.3, and 20.1.

Can CVE-2021-0219 be exploited remotely?

CVE-2021-0219 cannot be exploited remotely as it requires local authenticated access to the affected system.

What are the implications of CVE-2021-0219 on my Juniper Networks devices?

The implications of CVE-2021-0219 include a risk of unauthorized command execution, potentially leading to a full compromise of the device.

Vulnerability/
CVE-2021-0219

high

7.2

CWE

78 77

13/1/2021

3/8/2024

CVE-2021-0219: Junos OS: Command injection vulnerability in 'request system software' CLI command

First published: Wed Jan 13 2021(Updated: )

A command injection vulnerability in install package validation subsystem of Juniper Networks Junos OS that may allow a locally authenticated attacker with privileges to execute commands with root privilege. To validate a package in Junos before installation, an administrator executes the command 'request system software add validate-on-host' via the CLI. An attacker with access to this CLI command may be able to exploit this vulnerability. This issue affects Juniper Networks Junos OS: all versions prior to 17.3R3-S10; 17.4 versions prior to 17.4R2-S12, 17.4R3-S3; 18.1 versions prior to 18.1R3-S11; 18.2 versions prior to 18.2R2-S8, 18.2R3-S6; 18.3 versions prior to 18.3R3-S4; 18.4 versions prior to 18.4R1-S8, 18.4R2-S7, 18.4R3-S6; 19.1 versions prior to 19.1R1-S6, 19.1R2-S2, 19.1R3-S3; 19.2 versions prior to 19.2R3-S1; 19.3 versions prior to 19.3R2-S5, 19.3R3-S1; 19.4 versions prior to 19.4R2-S2, 19.4R3-S1; 20.1 versions prior to 20.1R2; 20.2 versions prior to 20.2R1-S2, 20.2R2; 20.3 versions prior to 20.3R1-S1, 20.3R2.

Credit: sirt@juniper.net

Affected Software	Affected Version	How to fix
Juniper Junos	=17.3
Juniper Junos	=17.3-r1-s1
Juniper Junos	=17.3-r2
Juniper Junos	=17.3-r2-s1
Juniper Junos	=17.3-r2-s2
Juniper Junos	=17.3-r2-s3
Juniper Junos	=17.3-r2-s4
Juniper Junos	=17.3-r2-s5
Juniper Junos	=17.3-r3
Juniper Junos	=17.3-r3-s1
Juniper Junos	=17.3-r3-s2
Juniper Junos	=17.3-r3-s3
Juniper Junos	=17.3-r3-s4
Juniper Junos	=17.3-r3-s5
Juniper Junos	=17.3-r3-s6
Juniper Junos	=17.3-r3-s7
Juniper Junos	=17.3-r3-s8
Juniper Junos	=17.3-r3-s9
Juniper Junos	=17.4
Juniper Junos	=17.4-r1
Juniper Junos	=17.4-r1-s1
Juniper Junos	=17.4-r1-s2
Juniper Junos	=17.4-r1-s4
Juniper Junos	=17.4-r1-s5
Juniper Junos	=17.4-r1-s6
Juniper Junos	=17.4-r1-s7
Juniper Junos	=17.4-r2
Juniper Junos	=17.4-r2-s1
Juniper Junos	=17.4-r2-s10
Juniper Junos	=17.4-r2-s11
Juniper Junos	=17.4-r2-s2
Juniper Junos	=17.4-r2-s3
Juniper Junos	=17.4-r2-s4
Juniper Junos	=17.4-r2-s5
Juniper Junos	=17.4-r2-s6
Juniper Junos	=17.4-r2-s7
Juniper Junos	=17.4-r2-s8
Juniper Junos	=17.4-r2-s9
Juniper Junos	=17.4-r3
Juniper Junos	=17.4-r3-s1
Juniper Junos	=17.4-r3-s2
Juniper Junos	=18.1
Juniper Junos	=18.1-r1
Juniper Junos	=18.1-r2
Juniper Junos	=18.1-r2-s1
Juniper Junos	=18.1-r2-s2
Juniper Junos	=18.1-r2-s4
Juniper Junos	=18.1-r3
Juniper Junos	=18.1-r3-s1
Juniper Junos	=18.1-r3-s10
Juniper Junos	=18.1-r3-s2
Juniper Junos	=18.1-r3-s3
Juniper Junos	=18.1-r3-s4
Juniper Junos	=18.1-r3-s6
Juniper Junos	=18.1-r3-s7
Juniper Junos	=18.1-r3-s8
Juniper Junos	=18.1-r3-s9
Juniper Junos	=18.2
Juniper Junos	=18.2-r1
Juniper Junos	=18.2-r1
Juniper Junos	=18.2-r1-s3
Juniper Junos	=18.2-r1-s4
Juniper Junos	=18.2-r1-s5
Juniper Junos	=18.2-r2
Juniper Junos	=18.2-r2-s1
Juniper Junos	=18.2-r2-s2
Juniper Junos	=18.2-r2-s3
Juniper Junos	=18.2-r2-s4
Juniper Junos	=18.2-r2-s5
Juniper Junos	=18.2-r2-s6
Juniper Junos	=18.2-r2-s7
Juniper Junos	=18.2-r3
Juniper Junos	=18.2-r3-s1
Juniper Junos	=18.2-r3-s2
Juniper Junos	=18.2-r3-s3
Juniper Junos	=18.2-r3-s4
Juniper Junos	=18.2-r3-s5
Juniper Junos	=18.3
Juniper Junos	=18.3-r1
Juniper Junos	=18.3-r1-s1
Juniper Junos	=18.3-r1-s2
Juniper Junos	=18.3-r1-s3
Juniper Junos	=18.3-r1-s5
Juniper Junos	=18.3-r1-s6
Juniper Junos	=18.3-r2
Juniper Junos	=18.3-r2-s1
Juniper Junos	=18.3-r2-s2
Juniper Junos	=18.3-r2-s3
Juniper Junos	=18.3-r2-s4
Juniper Junos	=18.3-r3
Juniper Junos	=18.3-r3-s1
Juniper Junos	=18.3-r3-s2
Juniper Junos	=18.3-r3-s3
Juniper Junos	=18.4
Juniper Junos	=18.4-r1
Juniper Junos	=18.4-r1-s1
Juniper Junos	=18.4-r1-s2
Juniper Junos	=18.4-r1-s3
Juniper Junos	=18.4-r1-s4
Juniper Junos	=18.4-r1-s5
Juniper Junos	=18.4-r1-s6
Juniper Junos	=18.4-r1-s7
Juniper Junos	=18.4-r2
Juniper Junos	=18.4-r2-s1
Juniper Junos	=18.4-r2-s2
Juniper Junos	=18.4-r2-s3
Juniper Junos	=18.4-r2-s4
Juniper Junos	=18.4-r2-s5
Juniper Junos	=18.4-r2-s6
Juniper Junos	=18.4-r3
Juniper Junos	=18.4-r3-s1
Juniper Junos	=18.4-r3-s2
Juniper Junos	=18.4-r3-s3
Juniper Junos	=18.4-r3-s4
Juniper Junos	=18.4-r3-s5
Juniper Junos	=19.1
Juniper Junos	=19.1-r1
Juniper Junos	=19.1-r1-s1
Juniper Junos	=19.1-r1-s2
Juniper Junos	=19.1-r1-s3
Juniper Junos	=19.1-r1-s4
Juniper Junos	=19.1-r1-s5
Juniper Junos	=19.1-r2
Juniper Junos	=19.1-r2-s1
Juniper Junos	=19.1-r3
Juniper Junos	=19.1-r3-s1
Juniper Junos	=19.1-r3-s2
Juniper Junos	=19.2
Juniper Junos	=19.2-r1
Juniper Junos	=19.2-r1-s1
Juniper Junos	=19.2-r1-s2
Juniper Junos	=19.2-r1-s3
Juniper Junos	=19.2-r1-s4
Juniper Junos	=19.2-r2
Juniper Junos	=19.2-r3
Juniper Junos	=19.3
Juniper Junos	=19.3-r1
Juniper Junos	=19.3-r1-s1
Juniper Junos	=19.3-r2
Juniper Junos	=19.3-r2-s1
Juniper Junos	=19.3-r2-s2
Juniper Junos	=19.3-r2-s3
Juniper Junos	=19.3-r2-s4
Juniper Junos	=19.3-r3
Juniper Junos	=19.4-r1
Juniper Junos	=19.4-r1-s1
Juniper Junos	=19.4-r1-s2
Juniper Junos	=19.4-r2
Juniper Junos	=19.4-r2-s1
Juniper Junos	=19.4-r3
Juniper Junos	=20.1-r1
Juniper Junos	=20.1-r1-s1
Juniper Junos	=20.1-r1-s2
Juniper Junos	=20.1-r1-s3
Juniper Junos	=20.2-r1
Juniper Junos	=20.2-r1-s1
Juniper Junos	=20.3-r1

Remedy

The following software releases have been updated to resolve this specific issue: Junos OS: 17.3R3-S10, 17.4R2-S12, 17.4R3-S3, 18.1R3-S11, 18.2R2-S8, 18.2R3-S6, 18.2X75-D34, 18.3R3-S4, 18.4R1-S8, 18.4R2-S7, 18.4R3-S6, 19.1R1-S6, 19.1R2-S2, 19.1R3-S3, 19.2R3-S1, 19.3R2-S5, 19.3R3-S1, 19.4R2-S2, 19.4R3-S1, 20.1R2, 20.2R1-S2, 20.2R2, 20.3R1-S1, 20.3R2, 20.4R1, and all subsequent releases.

Never miss a vulnerability like this again

Reference Links

https://kb.juniper.net/JSA11109

Frequently Asked Questions

What is the severity of CVE-2021-0219?
CVE-2021-0219 has a severity rating of critical due to the potential for local authenticated attackers to execute commands with root privileges.
How do I fix CVE-2021-0219?
To fix CVE-2021-0219, update your Junos OS to a patched version as outlined in Juniper's vulnerability advisory.
Which versions of Junos OS are affected by CVE-2021-0219?
CVE-2021-0219 affects Junos OS versions 17.3, 17.4, 18.1, 18.2, 18.3, 18.4, 19.1, 19.2, 19.3, and 20.1.
Can CVE-2021-0219 be exploited remotely?
CVE-2021-0219 cannot be exploited remotely as it requires local authenticated access to the affected system.
What are the implications of CVE-2021-0219 on my Juniper Networks devices?
The implications of CVE-2021-0219 include a risk of unauthorized command execution, potentially leading to a full compromise of the device.

agent/weakness
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/severity
agent/author
agent/title
agent/remedy
agent/last-modified-date
agent/first-publish-date
agent/description
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/juniper
canonical/juniper junos
version/juniper junos/17.3
version/juniper junos/17.3-r1-s1
version/juniper junos/17.3-r2
version/juniper junos/17.3-r2-s1
version/juniper junos/17.3-r2-s2
version/juniper junos/17.3-r2-s3
version/juniper junos/17.3-r2-s4
version/juniper junos/17.3-r2-s5
version/juniper junos/17.3-r3
version/juniper junos/17.3-r3-s1
version/juniper junos/17.3-r3-s2
version/juniper junos/17.3-r3-s3
version/juniper junos/17.3-r3-s4
version/juniper junos/17.3-r3-s5
version/juniper junos/17.3-r3-s6
version/juniper junos/17.3-r3-s7
version/juniper junos/17.3-r3-s8
version/juniper junos/17.3-r3-s9
version/juniper junos/17.4
version/juniper junos/17.4-r1
version/juniper junos/17.4-r1-s1
version/juniper junos/17.4-r1-s2
version/juniper junos/17.4-r1-s4
version/juniper junos/17.4-r1-s5
version/juniper junos/17.4-r1-s6
version/juniper junos/17.4-r1-s7
version/juniper junos/17.4-r2
version/juniper junos/17.4-r2-s1
version/juniper junos/17.4-r2-s10
version/juniper junos/17.4-r2-s11
version/juniper junos/17.4-r2-s2
version/juniper junos/17.4-r2-s3
version/juniper junos/17.4-r2-s4
version/juniper junos/17.4-r2-s5
version/juniper junos/17.4-r2-s6
version/juniper junos/17.4-r2-s7
version/juniper junos/17.4-r2-s8
version/juniper junos/17.4-r2-s9
version/juniper junos/17.4-r3
version/juniper junos/17.4-r3-s1
version/juniper junos/17.4-r3-s2
version/juniper junos/18.1
version/juniper junos/18.1-r1
version/juniper junos/18.1-r2
version/juniper junos/18.1-r2-s1
version/juniper junos/18.1-r2-s2
version/juniper junos/18.1-r2-s4
version/juniper junos/18.1-r3
version/juniper junos/18.1-r3-s1
version/juniper junos/18.1-r3-s10
version/juniper junos/18.1-r3-s2
version/juniper junos/18.1-r3-s3
version/juniper junos/18.1-r3-s4
version/juniper junos/18.1-r3-s6
version/juniper junos/18.1-r3-s7
version/juniper junos/18.1-r3-s8
version/juniper junos/18.1-r3-s9
version/juniper junos/18.2
version/juniper junos/18.2-r1
version/juniper junos/18.2-r1-s3
version/juniper junos/18.2-r1-s4
version/juniper junos/18.2-r1-s5
version/juniper junos/18.2-r2
version/juniper junos/18.2-r2-s1
version/juniper junos/18.2-r2-s2
version/juniper junos/18.2-r2-s3
version/juniper junos/18.2-r2-s4
version/juniper junos/18.2-r2-s5
version/juniper junos/18.2-r2-s6
version/juniper junos/18.2-r2-s7
version/juniper junos/18.2-r3
version/juniper junos/18.2-r3-s1
version/juniper junos/18.2-r3-s2
version/juniper junos/18.2-r3-s3
version/juniper junos/18.2-r3-s4
version/juniper junos/18.2-r3-s5
version/juniper junos/18.3
version/juniper junos/18.3-r1
version/juniper junos/18.3-r1-s1
version/juniper junos/18.3-r1-s2
version/juniper junos/18.3-r1-s3
version/juniper junos/18.3-r1-s5
version/juniper junos/18.3-r1-s6
version/juniper junos/18.3-r2
version/juniper junos/18.3-r2-s1
version/juniper junos/18.3-r2-s2
version/juniper junos/18.3-r2-s3
version/juniper junos/18.3-r2-s4
version/juniper junos/18.3-r3
version/juniper junos/18.3-r3-s1
version/juniper junos/18.3-r3-s2
version/juniper junos/18.3-r3-s3
version/juniper junos/18.4
version/juniper junos/18.4-r1
version/juniper junos/18.4-r1-s1
version/juniper junos/18.4-r1-s2
version/juniper junos/18.4-r1-s3
version/juniper junos/18.4-r1-s4
version/juniper junos/18.4-r1-s5
version/juniper junos/18.4-r1-s6
version/juniper junos/18.4-r1-s7
version/juniper junos/18.4-r2
version/juniper junos/18.4-r2-s1
version/juniper junos/18.4-r2-s2
version/juniper junos/18.4-r2-s3
version/juniper junos/18.4-r2-s4
version/juniper junos/18.4-r2-s5
version/juniper junos/18.4-r2-s6
version/juniper junos/18.4-r3
version/juniper junos/18.4-r3-s1
version/juniper junos/18.4-r3-s2
version/juniper junos/18.4-r3-s3
version/juniper junos/18.4-r3-s4
version/juniper junos/18.4-r3-s5
version/juniper junos/19.1
version/juniper junos/19.1-r1
version/juniper junos/19.1-r1-s1
version/juniper junos/19.1-r1-s2
version/juniper junos/19.1-r1-s3
version/juniper junos/19.1-r1-s4
version/juniper junos/19.1-r1-s5
version/juniper junos/19.1-r2
version/juniper junos/19.1-r2-s1
version/juniper junos/19.1-r3
version/juniper junos/19.1-r3-s1
version/juniper junos/19.1-r3-s2
version/juniper junos/19.2
version/juniper junos/19.2-r1
version/juniper junos/19.2-r1-s1
version/juniper junos/19.2-r1-s2
version/juniper junos/19.2-r1-s3
version/juniper junos/19.2-r1-s4
version/juniper junos/19.2-r2
version/juniper junos/19.2-r3
version/juniper junos/19.3
version/juniper junos/19.3-r1
version/juniper junos/19.3-r1-s1
version/juniper junos/19.3-r2
version/juniper junos/19.3-r2-s1
version/juniper junos/19.3-r2-s2
version/juniper junos/19.3-r2-s3
version/juniper junos/19.3-r2-s4
version/juniper junos/19.3-r3
version/juniper junos/19.4-r1
version/juniper junos/19.4-r1-s1
version/juniper junos/19.4-r1-s2
version/juniper junos/19.4-r2
version/juniper junos/19.4-r2-s1
version/juniper junos/19.4-r3
version/juniper junos/20.1-r1
version/juniper junos/20.1-r1-s1
version/juniper junos/20.1-r1-s2
version/juniper junos/20.1-r1-s3
version/juniper junos/20.2-r1
version/juniper junos/20.2-r1-s1
version/juniper junos/20.3-r1

CVE-2021-0219: Junos OS: Command injection vulnerability in 'request system software' CLI command

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2021-0219?

How do I fix CVE-2021-0219?

Which versions of Junos OS are affected by CVE-2021-0219?

Can CVE-2021-0219 be exploited remotely?

What are the implications of CVE-2021-0219 on my Juniper Networks devices?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2021-0219?

How do I fix CVE-2021-0219?

Which versions of Junos OS are affected by CVE-2021-0219?

Can CVE-2021-0219 be exploited remotely?

What are the implications of CVE-2021-0219 on my Juniper Networks devices?