Networking {hardware} firm Juniper Networks has launched an pressing safety replace to handle a number of vulnerabilities within the J-Web part of Junos OS. These flaws have a vital severity score and will permit distant code execution on weak installations. The vulnerabilities have an effect on all variations of Junos OS on SRX and EX Series. By exploiting these vulnerabilities, an attacker may remotely execute code on the gadgets. The J-Web interface, which permits customers to configure and handle Junos OS gadgets, is affected by these flaws. The vulnerabilities contain PHP exterior variable modification and lacking authentications for vital capabilities. Juniper has supplied up to date variations of Junos OS to handle these vulnerabilities, and customers are suggested to apply the required fixes or restrict entry to trusted hosts.
Source hyperlink
