CVE-2021-31384: Junos OS: SRX Series: Under a specific device configuration an attacker can access the devices J-Web management services from any interface, regardless of security settings protecting the service
First published: Tue Oct 19 2021(Updated: )
Due to a Missing Authorization weakness and Insufficient Granularity of Access Control in a specific device configuration, a vulnerability exists in Juniper Networks Junos OS on SRX Series whereby an attacker who attempts to access J-Web administrative interfaces can successfully do so from any device interface regardless of the web-management configuration and filter rules which may otherwise protect access to J-Web. This issue affects: Juniper Networks Junos OS SRX Series 20.4 version 20.4R1 and later versions prior to 20.4R2-S1, 20.4R3; 21.1 versions prior to 21.1R1-S1, 21.1R2. This issue does not affect Juniper Networks Junos OS versions prior to 20.4R1.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper JUNOS | =20.4-r1 | |
| Juniper JUNOS | =20.4-r1-s1 | |
| Juniper JUNOS | =20.4-r2 | |
| Juniper JUNOS | =21.1-r1 | |
| Juniper Srx1500 | ||
| Juniper Srx300 | ||
| Juniper Srx4100 | ||
| Juniper Srx4200 | ||
| Juniper Srx4600 | ||
| Juniper Srx5400 | ||
| Juniper Srx550 | ||
| Juniper Srx5600 | ||
| Juniper Srx5800 |
Remedy
The following software releases have been updated to resolve this specific issue: 20.4R2-S1, 20.4R3, 21.1R1-S1, 21.1R2, 21.2R1, and all subsequent releases.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-31384?
CVE-2021-31384 is a vulnerability in Juniper Networks Junos OS on SRX Series due to a Missing Authorization weakness and Insufficient Granularity of Access Control.
What is the severity of CVE-2021-31384?
CVE-2021-31384 has a severity rating of critical.
Which software versions are affected by CVE-2021-31384?
Juniper Networks Junos OS versions 20.4-r1, 20.4-r1-s1, 20.4-r2, and 21.1-r1 are affected by CVE-2021-31384.
How can an attacker exploit CVE-2021-31384?
An attacker can exploit CVE-2021-31384 by attempting to access J-Web administrative interfaces from any device.
Is Juniper Srx1500/Srx300/Srx4100/Srx4200/Srx4600/Srx5400/Srx550/Srx5600/Srx5800 vulnerable to CVE-2021-31384?
No, Juniper Srx1500/Srx300/Srx4100/Srx4200/Srx4600/Srx5400/Srx550/Srx5600/Srx5800 are not vulnerable to CVE-2021-31384.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/title
- agent/severity
- agent/remedy
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/juniper
- canonical/juniper junos
- version/juniper junos/20.4-r1
- version/juniper junos/20.4-r1-s1
- version/juniper junos/20.4-r2
- version/juniper junos/21.1-r1
- canonical/juniper srx1500
- canonical/juniper srx300
- canonical/juniper srx4100
- canonical/juniper srx4200
- canonical/juniper srx4600
- canonical/juniper srx5400
- canonical/juniper srx550
- canonical/juniper srx5600
- canonical/juniper srx5800