CVE-2024-21591: Junos OS: SRX Series and EX Series: Security Vulnerability in J-web allows a preAuth Remote Code Execution
First published: Fri Jan 12 2024(Updated: )
An Out-of-bounds Write vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS), or Remote Code Execution (RCE) and obtain root privileges on the device. This issue is caused by use of an insecure function allowing an attacker to overwrite arbitrary memory. This issue affects Juniper Networks Junos OS SRX Series and EX Series: * Junos OS versions earlier than 20.4R3-S9; * Junos OS 21.2 versions earlier than 21.2R3-S7; * Junos OS 21.3 versions earlier than 21.3R3-S5; * Junos OS 21.4 versions earlier than 21.4R3-S5; * Junos OS 22.1 versions earlier than 22.1R3-S4; * Junos OS 22.2 versions earlier than 22.2R3-S3; * Junos OS 22.3 versions earlier than 22.3R3-S2; * Junos OS 22.4 versions earlier than 22.4R2-S2, 22.4R3.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper Junos | <20.4 | |
| Juniper Junos | =20.4 | |
| Juniper Junos | =20.4-r1 | |
| Juniper Junos | =20.4-r1-s1 | |
| Juniper Junos | =20.4-r2 | |
| Juniper Junos | =20.4-r2-s1 | |
| Juniper Junos | =20.4-r2-s2 | |
| Juniper Junos | =20.4-r3 | |
| Juniper Junos | =20.4-r3-s1 | |
| Juniper Junos | =20.4-r3-s2 | |
| Juniper Junos | =20.4-r3-s3 | |
| Juniper Junos | =20.4-r3-s4 | |
| Juniper Junos | =20.4-r3-s5 | |
| Juniper Junos | =20.4-r3-s6 | |
| Juniper Junos | =20.4-r3-s7 | |
| Juniper Junos | =20.4-r3-s8 | |
| Juniper Junos | =21.2 | |
| Juniper Junos | =21.2-r1 | |
| Juniper Junos | =21.2-r1-s1 | |
| Juniper Junos | =21.2-r1-s2 | |
| Juniper Junos | =21.2-r2 | |
| Juniper Junos | =21.2-r2-s1 | |
| Juniper Junos | =21.2-r2-s2 | |
| Juniper Junos | =21.2-r3 | |
| Juniper Junos | =21.2-r3-s1 | |
| Juniper Junos | =21.2-r3-s2 | |
| Juniper Junos | =21.2-r3-s3 | |
| Juniper Junos | =21.2-r3-s4 | |
| Juniper Junos | =21.2-r3-s5 | |
| Juniper Junos | =21.2-r3-s6 | |
| Juniper Junos | =21.3 | |
| Juniper Junos | =21.3-r1 | |
| Juniper Junos | =21.3-r1-s1 | |
| Juniper Junos | =21.3-r1-s2 | |
| Juniper Junos | =21.3-r2 | |
| Juniper Junos | =21.3-r2-s1 | |
| Juniper Junos | =21.3-r2-s2 | |
| Juniper Junos | =21.3-r3 | |
| Juniper Junos | =21.3-r3-s1 | |
| Juniper Junos | =21.3-r3-s2 | |
| Juniper Junos | =21.3-r3-s3 | |
| Juniper Junos | =21.3-r3-s4 | |
| Juniper Junos | =21.4 | |
| Juniper Junos | =21.4-r1 | |
| Juniper Junos | =21.4-r1-s1 | |
| Juniper Junos | =21.4-r1-s2 | |
| Juniper Junos | =21.4-r2 | |
| Juniper Junos | =21.4-r2-s1 | |
| Juniper Junos | =21.4-r2-s2 | |
| Juniper Junos | =21.4-r3 | |
| Juniper Junos | =21.4-r3-s1 | |
| Juniper Junos | =21.4-r3-s2 | |
| Juniper Junos | =21.4-r3-s3 | |
| Juniper Junos | =21.4-r3-s4 | |
| Juniper Junos | =22.1 | |
| Juniper Junos | =22.1-r1 | |
| Juniper Junos | =22.1-r1-s1 | |
| Juniper Junos | =22.1-r1-s2 | |
| Juniper Junos | =22.1-r2 | |
| Juniper Junos | =22.1-r2-s1 | |
| Juniper Junos | =22.1-r2-s2 | |
| Juniper Junos | =22.1-r3 | |
| Juniper Junos | =22.1-r3-s1 | |
| Juniper Junos | =22.1-r3-s2 | |
| Juniper Junos | =22.1-r3-s3 | |
| Juniper Junos | =22.2 | |
| Juniper Junos | =22.2-r1 | |
| Juniper Junos | =22.2-r1-s1 | |
| Juniper Junos | =22.2-r1-s2 | |
| Juniper Junos | =22.2-r2 | |
| Juniper Junos | =22.2-r2-s1 | |
| Juniper Junos | =22.2-r2-s2 | |
| Juniper Junos | =22.2-r3 | |
| Juniper Junos | =22.2-r3-s1 | |
| Juniper Junos | =22.2-r3-s2 | |
| Juniper Junos | =22.3 | |
| Juniper Junos | =22.3-r1 | |
| Juniper Junos | =22.3-r1-s1 | |
| Juniper Junos | =22.3-r1-s2 | |
| Juniper Junos | =22.3-r2 | |
| Juniper Junos | =22.3-r2-s1 | |
| Juniper Junos | =22.3-r2-s2 | |
| Juniper Junos | =22.3-r3 | |
| Juniper Junos | =22.3-r3-s1 | |
| Juniper Junos | =22.4 | |
| Juniper Junos | =22.4-r1 | |
| Juniper Junos | =22.4-r1-s1 | |
| Juniper Junos | =22.4-r1-s2 | |
| Juniper Junos | =22.4-r2 | |
| Juniper Junos | =22.4-r2-s1 | |
| Juniper Networks SRX Series | ||
| Juniper Networks EX Series |
Remedy
The following software releases have been updated to resolve this specific issue: Junos OS: 20.4R3-S9, 21.2R3-S7, 21.3R3-S5, 21.4R3-S5, 22.1R3-S4, 22.2R3-S3, 22.3R3-S2, 22.4R2-S2, 22.4R3, 23.2R1-S1, 23.2R2, 23.4R1, and all subsequent releases.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the severity of CVE-2024-21591?
CVE-2024-21591 is categorized as a critical vulnerability that can lead to Denial of Service (DoS) or Remote Code Execution (RCE) on affected devices.
How do I fix CVE-2024-21591?
To fix CVE-2024-21591, apply the latest security updates provided by Juniper Networks for the affected versions of Junos OS.
Which products are affected by CVE-2024-21591?
CVE-2024-21591 affects Juniper Networks SRX Series and EX Series devices running vulnerable versions of Junos OS.
Can CVE-2024-21591 be exploited remotely?
Yes, CVE-2024-21591 can be exploited by unauthenticated, network-based attackers, potentially giving them control over the device.
What versions of Junos OS are vulnerable to CVE-2024-21591?
CVE-2024-21591 impacts multiple versions of Junos OS including 20.4, 21.2, 21.3, 21.4, 22.1, 22.2, 22.3, and 22.4.
- agent/remedy
- agent/weakness
- agent/title
- agent/author
- agent/first-publish-date
- agent/severity
- agent/type
- agent/description
- collector/the-register
- source/The Register
- alias/CVE-2024-21591
- agent/references
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/source
- agent/tags
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/news-ai
- vendor/juniper
- canonical/juniper junos
- version/juniper junos/20.4
- version/juniper junos/20.4-r1
- version/juniper junos/20.4-r1-s1
- version/juniper junos/20.4-r2
- version/juniper junos/20.4-r2-s1
- version/juniper junos/20.4-r2-s2
- version/juniper junos/20.4-r3
- version/juniper junos/20.4-r3-s1
- version/juniper junos/20.4-r3-s2
- version/juniper junos/20.4-r3-s3
- version/juniper junos/20.4-r3-s4
- version/juniper junos/20.4-r3-s5
- version/juniper junos/20.4-r3-s6
- version/juniper junos/20.4-r3-s7
- version/juniper junos/20.4-r3-s8
- version/juniper junos/21.2
- version/juniper junos/21.2-r1
- version/juniper junos/21.2-r1-s1
- version/juniper junos/21.2-r1-s2
- version/juniper junos/21.2-r2
- version/juniper junos/21.2-r2-s1
- version/juniper junos/21.2-r2-s2
- version/juniper junos/21.2-r3
- version/juniper junos/21.2-r3-s1
- version/juniper junos/21.2-r3-s2
- version/juniper junos/21.2-r3-s3
- version/juniper junos/21.2-r3-s4
- version/juniper junos/21.2-r3-s5
- version/juniper junos/21.2-r3-s6
- version/juniper junos/21.3
- version/juniper junos/21.3-r1
- version/juniper junos/21.3-r1-s1
- version/juniper junos/21.3-r1-s2
- version/juniper junos/21.3-r2
- version/juniper junos/21.3-r2-s1
- version/juniper junos/21.3-r2-s2
- version/juniper junos/21.3-r3
- version/juniper junos/21.3-r3-s1
- version/juniper junos/21.3-r3-s2
- version/juniper junos/21.3-r3-s3
- version/juniper junos/21.3-r3-s4
- version/juniper junos/21.4
- version/juniper junos/21.4-r1
- version/juniper junos/21.4-r1-s1
- version/juniper junos/21.4-r1-s2
- version/juniper junos/21.4-r2
- version/juniper junos/21.4-r2-s1
- version/juniper junos/21.4-r2-s2
- version/juniper junos/21.4-r3
- version/juniper junos/21.4-r3-s1
- version/juniper junos/21.4-r3-s2
- version/juniper junos/21.4-r3-s3
- version/juniper junos/21.4-r3-s4
- version/juniper junos/22.1
- version/juniper junos/22.1-r1
- version/juniper junos/22.1-r1-s1
- version/juniper junos/22.1-r1-s2
- version/juniper junos/22.1-r2
- version/juniper junos/22.1-r2-s1
- version/juniper junos/22.1-r2-s2
- version/juniper junos/22.1-r3
- version/juniper junos/22.1-r3-s1
- version/juniper junos/22.1-r3-s2
- version/juniper junos/22.1-r3-s3
- version/juniper junos/22.2
- version/juniper junos/22.2-r1
- version/juniper junos/22.2-r1-s1
- version/juniper junos/22.2-r1-s2
- version/juniper junos/22.2-r2
- version/juniper junos/22.2-r2-s1
- version/juniper junos/22.2-r2-s2
- version/juniper junos/22.2-r3
- version/juniper junos/22.2-r3-s1
- version/juniper junos/22.2-r3-s2
- version/juniper junos/22.3
- version/juniper junos/22.3-r1
- version/juniper junos/22.3-r1-s1
- version/juniper junos/22.3-r1-s2
- version/juniper junos/22.3-r2
- version/juniper junos/22.3-r2-s1
- version/juniper junos/22.3-r2-s2
- version/juniper junos/22.3-r3
- version/juniper junos/22.3-r3-s1
- version/juniper junos/22.4
- version/juniper junos/22.4-r1
- version/juniper junos/22.4-r1-s1
- version/juniper junos/22.4-r1-s2
- version/juniper junos/22.4-r2
- version/juniper junos/22.4-r2-s1
- vendor/juniper networks
- canonical/juniper networks srx series
- canonical/juniper networks ex series