Vulnerability: Privilege Escalation in Juniper Networks Junos OS on cSRX Series Devices

Vulnerability: Privilege Escalation in Juniper Networks Junos OS on cSRX Series Devices

CVE-2022-22251 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

On cSRX Series devices software permission issues in the container filesystem and stored files combined with storing passwords in a recoverable format in Juniper Networks Junos OS allows a local, low-privileged attacker to elevate their permissions to take control of any instance of a cSRX software deployment. This issue affects Juniper Networks Junos OS 20.2 version 20.2R1 and later versions prior to 21.2R1 on cSRX Series.

Learn more about our Cis Benchmark Audit For Juniper.