What is CVE-2023-28966?

CVE-2023-28966 is an Incorrect Default Permissions vulnerability in Juniper Networks Junos OS Evolved that allows a low-privileged local attacker with shell access to modify existing files or execute commands as root.

How does CVE-2023-28966 affect Juniper Networks Junos OS Evolved?

CVE-2023-28966 affects Juniper Networks Junos OS Evolved by allowing a low-privileged local attacker with shell access to modify existing files or execute commands as root.

What is the severity of CVE-2023-28966?

The severity of CVE-2023-28966 is high with a severity value of 7.8.

How do I fix CVE-2023-28966?

To fix CVE-2023-28966, it is recommended to apply the necessary patches or updates provided by Juniper Networks Junos OS Evolved.

Where can I find more information about CVE-2023-28966?

You can find more information about CVE-2023-28966 on the Juniper Networks Support Portal at the following link: [https://supportportal.juniper.net/JSA70590](https://supportportal.juniper.net/JSA70590).

Vulnerability/
CVE-2023-28966

high

7.8

CWE

276

17/4/2023

2/8/2024

CVE-2023-28966: Junos OS Evolved: Local low-privileged user with shell access can execute CLI commands as root

First published: Mon Apr 17 2023(Updated: )

An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS Evolved allows a low-privileged local attacker with shell access to modify existing files or execute commands as root. The issue is caused by improper file and directory permissions on certain system files, allowing an attacker with access to these files and folders to inject CLI commands as root. This issue affects Juniper Networks Junos OS Evolved: All versions prior to 20.4R3-S5-EVO; 21.2 versions prior to 21.2R3-EVO; 21.3 versions prior to 21.3R2-EVO.

Credit: sirt@juniper.net

Affected Software	Affected Version	How to fix
Juniper Networks Junos OS Evolved	<20.4
Juniper Networks Junos OS Evolved	=20.4
Juniper Networks Junos OS Evolved	=20.4-r1
Juniper Networks Junos OS Evolved	=20.4-r1-s1
Juniper Networks Junos OS Evolved	=20.4-r1-s2
Juniper Networks Junos OS Evolved	=20.4-r2
Juniper Networks Junos OS Evolved	=20.4-r2-s1
Juniper Networks Junos OS Evolved	=20.4-r2-s2
Juniper Networks Junos OS Evolved	=20.4-r2-s3
Juniper Networks Junos OS Evolved	=20.4-r3
Juniper Networks Junos OS Evolved	=20.4-r3-s1
Juniper Networks Junos OS Evolved	=20.4-r3-s2
Juniper Networks Junos OS Evolved	=20.4-r3-s3
Juniper Networks Junos OS Evolved	=20.4-r3-s4
Juniper Networks Junos OS Evolved	=21.2
Juniper Networks Junos OS Evolved	=21.2-r1
Juniper Networks Junos OS Evolved	=21.2-r1-s1
Juniper Networks Junos OS Evolved	=21.2-r1-s2
Juniper Networks Junos OS Evolved	=21.2-r2
Juniper Networks Junos OS Evolved	=21.2-r2-s1
Juniper Networks Junos OS Evolved	=21.2-r2-s2
Juniper Networks Junos OS Evolved	=21.3
Juniper Networks Junos OS Evolved	=21.3-r1
Juniper Networks Junos OS Evolved	=21.3-r1-s1

Remedy

The following software releases have been updated to resolve this specific issue: Junos OS Evolved 20.4R3-S5-EVO, 21.2R3-EVO, 21.3R2-EVO, 21.4R1-EVO, and all subsequent releases.

Never miss a vulnerability like this again

Reference Links

https://supportportal.juniper.net/JSA70590

Frequently Asked Questions

What is CVE-2023-28966?
CVE-2023-28966 is an Incorrect Default Permissions vulnerability in Juniper Networks Junos OS Evolved that allows a low-privileged local attacker with shell access to modify existing files or execute commands as root.
How does CVE-2023-28966 affect Juniper Networks Junos OS Evolved?
CVE-2023-28966 affects Juniper Networks Junos OS Evolved by allowing a low-privileged local attacker with shell access to modify existing files or execute commands as root.
What is the severity of CVE-2023-28966?
The severity of CVE-2023-28966 is high with a severity value of 7.8.
How do I fix CVE-2023-28966?
To fix CVE-2023-28966, it is recommended to apply the necessary patches or updates provided by Juniper Networks Junos OS Evolved.
Where can I find more information about CVE-2023-28966?
You can find more information about CVE-2023-28966 on the Juniper Networks Support Portal at the following link: [https://supportportal.juniper.net/JSA70590](https://supportportal.juniper.net/JSA70590).

agent/type
collector/mitre-cve
source/MITRE
agent/remedy
agent/references
agent/severity
agent/weakness
agent/title
agent/last-modified-date
agent/author
agent/event
agent/description
agent/first-publish-date
collector/nvd-index
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
agent/source
vendor/juniper
canonical/juniper networks junos os evolved
version/juniper networks junos os evolved/20.4
version/juniper networks junos os evolved/20.4-r1
version/juniper networks junos os evolved/20.4-r1-s1
version/juniper networks junos os evolved/20.4-r1-s2
version/juniper networks junos os evolved/20.4-r2
version/juniper networks junos os evolved/20.4-r2-s1
version/juniper networks junos os evolved/20.4-r2-s2
version/juniper networks junos os evolved/20.4-r2-s3
version/juniper networks junos os evolved/20.4-r3
version/juniper networks junos os evolved/20.4-r3-s1
version/juniper networks junos os evolved/20.4-r3-s2
version/juniper networks junos os evolved/20.4-r3-s3
version/juniper networks junos os evolved/20.4-r3-s4
version/juniper networks junos os evolved/21.2
version/juniper networks junos os evolved/21.2-r1
version/juniper networks junos os evolved/21.2-r1-s1
version/juniper networks junos os evolved/21.2-r1-s2
version/juniper networks junos os evolved/21.2-r2
version/juniper networks junos os evolved/21.2-r2-s1
version/juniper networks junos os evolved/21.2-r2-s2
version/juniper networks junos os evolved/21.3
version/juniper networks junos os evolved/21.3-r1
version/juniper networks junos os evolved/21.3-r1-s1