CVE-2021-31360

EPSS 0.12%
Published 19.10.2021 19:15:09
Last modified 21.11.2024 06:05:30
Source sirt@juniper.net
Teams watchlist Login
Open Login

An improper privilege management vulnerability in the Juniper Networks Junos OS and Junos OS Evolved command-line interpreter (CLI) allows a low-privileged user to overwrite local files as root, possibly leading to a system integrity issue or Denial of Service (DoS). Depending on the files overwritten, exploitation of this vulnerability could lead to a sustained Denial of Service (DoS) condition, requiring manual user intervention to recover. Systems are only vulnerable if jdhcpd is running, which can be confirmed via the 'show system processes' command. For example: root@host# run show system processes extensive | match dhcp 26537 root -16 0 97568K 13692K RUN 0 0:01 3.71% jdhcpd This issue affects: Juniper Networks Junos OS: All versions, including the following supported releases: 15.1 versions prior to 15.1R7-S10; 17.4 versions prior to 17.4R3-S5; 18.3 versions prior to 18.3R3-S5; 18.4 versions prior to 18.4R3-S9; 19.1 versions prior to 19.1R3-S6; 19.2 versions prior to 19.2R1-S7, 19.2R3-S3; 19.3 versions prior to 19.3R2-S6, 19.3R3-S3; 19.4 versions prior to 19.4R3-S6; 20.1 versions prior to 20.1R2-S2, 20.1R3-S1; 20.2 versions prior to 20.2R3-S2; 20.3 versions prior to 20.3R3; 20.4 versions prior to 20.4R2-S1, 20.4R3; 21.1 versions prior to 21.1R1-S1, 21.1R2. Juniper Networks Junos OS Evolved: All versions prior to 20.4R2-S3-EVO; All versions of 21.1-EVO.

Affected products Warnungen 0 Metrics 3 CWE 2 References 4

Data is provided by the National Vulnerability Database (NVD)

Juniper ≫ Junos Version15.1 Update-

Juniper ≫ Junos Version15.1 Updatea1

Juniper ≫ Junos Version15.1 Updatef

Juniper ≫ Junos Version15.1 Updatef1

Juniper ≫ Junos Version15.1 Updatef2

Juniper ≫ Junos Version15.1 Updatef2-s1

Juniper ≫ Junos Version15.1 Updatef2-s2

Juniper ≫ Junos Version15.1 Updatef2-s3

Juniper ≫ Junos Version15.1 Updatef2-s4

Juniper ≫ Junos Version15.1 Updatef3

Juniper ≫ Junos Version15.1 Updatef4

Juniper ≫ Junos Version15.1 Updatef5

Juniper ≫ Junos Version15.1 Updatef5-s7

Juniper ≫ Junos Version15.1 Updatef6

Juniper ≫ Junos Version15.1 Updatef6-s1

Juniper ≫ Junos Version15.1 Updatef6-s10

Juniper ≫ Junos Version15.1 Updatef6-s12

Juniper ≫ Junos Version15.1 Updatef6-s2

Juniper ≫ Junos Version15.1 Updatef6-s3

Juniper ≫ Junos Version15.1 Updatef6-s4

Juniper ≫ Junos Version15.1 Updatef6-s5

Juniper ≫ Junos Version15.1 Updatef6-s6

Juniper ≫ Junos Version15.1 Updatef6-s7

Juniper ≫ Junos Version15.1 Updatef6-s8

Juniper ≫ Junos Version15.1 Updatef6-s9

Juniper ≫ Junos Version15.1 Updatef7

Juniper ≫ Junos Version15.1 Updater

Juniper ≫ Junos Version15.1 Updater1

Juniper ≫ Junos Version15.1 Updater2

Juniper ≫ Junos Version15.1 Updater3

Juniper ≫ Junos Version15.1 Updater4

Juniper ≫ Junos Version15.1 Updater4-s7

Juniper ≫ Junos Version15.1 Updater4-s8

Juniper ≫ Junos Version15.1 Updater4-s9

Juniper ≫ Junos Version15.1 Updater5

Juniper ≫ Junos Version15.1 Updater5-s1

Juniper ≫ Junos Version15.1 Updater5-s3

Juniper ≫ Junos Version15.1 Updater5-s5

Juniper ≫ Junos Version15.1 Updater5-s6

Juniper ≫ Junos Version15.1 Updater6

Juniper ≫ Junos Version15.1 Updater6-s1

Juniper ≫ Junos Version15.1 Updater6-s2

Juniper ≫ Junos Version15.1 Updater6-s3

Juniper ≫ Junos Version15.1 Updater6-s4

Juniper ≫ Junos Version15.1 Updater6-s6

Juniper ≫ Junos Version15.1 Updater7

Juniper ≫ Junos Version15.1 Updater7-s1

Juniper ≫ Junos Version15.1 Updater7-s2

Juniper ≫ Junos Version15.1 Updater7-s3

Juniper ≫ Junos Version15.1 Updater7-s4

Juniper ≫ Junos Version15.1 Updater7-s5

Juniper ≫ Junos Version15.1 Updater7-s6

Juniper ≫ Junos Version15.1 Updater7-s7

Juniper ≫ Junos Version15.1 Updater7-s8

Juniper ≫ Junos Version15.1 Updater7-s9

Juniper ≫ Junos Version17.4 Update-

Juniper ≫ Junos Version17.4 Updater1

Juniper ≫ Junos Version17.4 Updater1-s1

Juniper ≫ Junos Version17.4 Updater1-s2

Juniper ≫ Junos Version17.4 Updater1-s3

Juniper ≫ Junos Version17.4 Updater1-s4

Juniper ≫ Junos Version17.4 Updater1-s5

Juniper ≫ Junos Version17.4 Updater1-s6

Juniper ≫ Junos Version17.4 Updater1-s7

Juniper ≫ Junos Version17.4 Updater2

Juniper ≫ Junos Version17.4 Updater2-s1

Juniper ≫ Junos Version17.4 Updater2-s10

Juniper ≫ Junos Version17.4 Updater2-s11

Juniper ≫ Junos Version17.4 Updater2-s12

Juniper ≫ Junos Version17.4 Updater2-s2

Juniper ≫ Junos Version17.4 Updater2-s3

Juniper ≫ Junos Version17.4 Updater2-s4

Juniper ≫ Junos Version17.4 Updater2-s5

Juniper ≫ Junos Version17.4 Updater2-s6

Juniper ≫ Junos Version17.4 Updater2-s7

Juniper ≫ Junos Version17.4 Updater2-s8

Juniper ≫ Junos Version17.4 Updater2-s9

Juniper ≫ Junos Version17.4 Updater3

Juniper ≫ Junos Version17.4 Updater3-s1

Juniper ≫ Junos Version17.4 Updater3-s2

Juniper ≫ Junos Version17.4 Updater3-s3

Juniper ≫ Junos Version17.4 Updater3-s4

Juniper ≫ Junos Version18.3 Update-

Juniper ≫ Junos Version18.3 Updater1

Juniper ≫ Junos Version18.3 Updater1-s1

Juniper ≫ Junos Version18.3 Updater1-s2

Juniper ≫ Junos Version18.3 Updater1-s3

Juniper ≫ Junos Version18.3 Updater1-s4

Juniper ≫ Junos Version18.3 Updater1-s5

Juniper ≫ Junos Version18.3 Updater1-s6

Juniper ≫ Junos Version18.3 Updater2

Juniper ≫ Junos Version18.3 Updater2-s1

Juniper ≫ Junos Version18.3 Updater2-s2

Juniper ≫ Junos Version18.3 Updater2-s3

Juniper ≫ Junos Version18.3 Updater2-s4

Juniper ≫ Junos Version18.3 Updater3

Juniper ≫ Junos Version18.3 Updater3-s1

Juniper ≫ Junos Version18.3 Updater3-s2

Juniper ≫ Junos Version18.3 Updater3-s3

Juniper ≫ Junos Version18.3 Updater3-s4

Juniper ≫ Junos Version18.4 Update-

Juniper ≫ Junos Version18.4 Updater1

Juniper ≫ Junos Version18.4 Updater1-s1

Juniper ≫ Junos Version18.4 Updater1-s2

Juniper ≫ Junos Version18.4 Updater1-s3

Juniper ≫ Junos Version18.4 Updater1-s4

Juniper ≫ Junos Version18.4 Updater1-s5

Juniper ≫ Junos Version18.4 Updater1-s6

Juniper ≫ Junos Version18.4 Updater1-s7

Juniper ≫ Junos Version18.4 Updater2

Juniper ≫ Junos Version18.4 Updater2-s1

Juniper ≫ Junos Version18.4 Updater2-s2

Juniper ≫ Junos Version18.4 Updater2-s3

Juniper ≫ Junos Version18.4 Updater2-s4

Juniper ≫ Junos Version18.4 Updater2-s5

Juniper ≫ Junos Version18.4 Updater2-s6

Juniper ≫ Junos Version18.4 Updater2-s7

Juniper ≫ Junos Version18.4 Updater2-s8

Juniper ≫ Junos Version18.4 Updater3

Juniper ≫ Junos Version18.4 Updater3-s1

Juniper ≫ Junos Version18.4 Updater3-s2

Juniper ≫ Junos Version18.4 Updater3-s3

Juniper ≫ Junos Version18.4 Updater3-s4

Juniper ≫ Junos Version18.4 Updater3-s5

Juniper ≫ Junos Version18.4 Updater3-s6

Juniper ≫ Junos Version18.4 Updater3-s7

Juniper ≫ Junos Version18.4 Updater3-s8

Juniper ≫ Junos Version19.1 Update-

Juniper ≫ Junos Version19.1 Updater1

Juniper ≫ Junos Version19.1 Updater1-s1

Juniper ≫ Junos Version19.1 Updater1-s2

Juniper ≫ Junos Version19.1 Updater1-s3

Juniper ≫ Junos Version19.1 Updater1-s4

Juniper ≫ Junos Version19.1 Updater1-s5

Juniper ≫ Junos Version19.1 Updater1-s6

Juniper ≫ Junos Version19.1 Updater2

Juniper ≫ Junos Version19.1 Updater2-s1

Juniper ≫ Junos Version19.1 Updater2-s2

Juniper ≫ Junos Version19.1 Updater3

Juniper ≫ Junos Version19.1 Updater3-s1

Juniper ≫ Junos Version19.1 Updater3-s2

Juniper ≫ Junos Version19.1 Updater3-s3

Juniper ≫ Junos Version19.1 Updater3-s4

Juniper ≫ Junos Version19.1 Updater3-s5

Juniper ≫ Junos Version19.2 Update-

Juniper ≫ Junos Version19.2 Updater1

Juniper ≫ Junos Version19.2 Updater1-s1

Juniper ≫ Junos Version19.2 Updater1-s2

Juniper ≫ Junos Version19.2 Updater1-s3

Juniper ≫ Junos Version19.2 Updater1-s4

Juniper ≫ Junos Version19.2 Updater1-s5

Juniper ≫ Junos Version19.2 Updater1-s6

Juniper ≫ Junos Version19.2 Updater2

Juniper ≫ Junos Version19.2 Updater2-s1

Juniper ≫ Junos Version19.2 Updater3

Juniper ≫ Junos Version19.2 Updater3-s1

Juniper ≫ Junos Version19.2 Updater3-s2

Juniper ≫ Junos Version19.3 Update-

Juniper ≫ Junos Version19.3 Updater1

Juniper ≫ Junos Version19.3 Updater1-s1

Juniper ≫ Junos Version19.3 Updater2

Juniper ≫ Junos Version19.3 Updater2-s1

Juniper ≫ Junos Version19.3 Updater2-s2

Juniper ≫ Junos Version19.3 Updater2-s3

Juniper ≫ Junos Version19.3 Updater2-s4

Juniper ≫ Junos Version19.3 Updater2-s5

Juniper ≫ Junos Version19.3 Updater3

Juniper ≫ Junos Version19.3 Updater3-s1

Juniper ≫ Junos Version19.3 Updater3-s2

Juniper ≫ Junos Version19.4 Updater1

Juniper ≫ Junos Version19.4 Updater1-s1

Juniper ≫ Junos Version19.4 Updater1-s2

Juniper ≫ Junos Version19.4 Updater1-s3

Juniper ≫ Junos Version19.4 Updater2

Juniper ≫ Junos Version19.4 Updater2-s1

Juniper ≫ Junos Version19.4 Updater2-s2

Juniper ≫ Junos Version19.4 Updater2-s3

Juniper ≫ Junos Version19.4 Updater2-s4

Juniper ≫ Junos Version19.4 Updater3

Juniper ≫ Junos Version19.4 Updater3-s1

Juniper ≫ Junos Version19.4 Updater3-s2

Juniper ≫ Junos Version19.4 Updater3-s3

Juniper ≫ Junos Version19.4 Updater3-s4

Juniper ≫ Junos Version19.4 Updater3-s5

Juniper ≫ Junos Version20.1 Updater1

Juniper ≫ Junos Version20.1 Updater1-s1

Juniper ≫ Junos Version20.1 Updater1-s2

Juniper ≫ Junos Version20.1 Updater1-s3

Juniper ≫ Junos Version20.1 Updater1-s4

Juniper ≫ Junos Version20.1 Updater2

Juniper ≫ Junos Version20.1 Updater2-s1

Juniper ≫ Junos Version20.1 Updater3

Juniper ≫ Junos Version20.2 Updater1

Juniper ≫ Junos Version20.2 Updater1-s1

Juniper ≫ Junos Version20.2 Updater1-s2

Juniper ≫ Junos Version20.2 Updater1-s3

Juniper ≫ Junos Version20.2 Updater2

Juniper ≫ Junos Version20.2 Updater2-s1

Juniper ≫ Junos Version20.2 Updater2-s2

Juniper ≫ Junos Version20.2 Updater2-s3

Juniper ≫ Junos Version20.2 Updater3

Juniper ≫ Junos Version20.2 Updater3-s1

Juniper ≫ Junos Version20.3 Updater1

Juniper ≫ Junos Version20.3 Updater1-s1

Juniper ≫ Junos Version20.3 Updater2

Juniper ≫ Junos Version20.3 Updater2-s1

Juniper ≫ Junos Version20.4 Updater1

Juniper ≫ Junos Version20.4 Updater1-s1

Juniper ≫ Junos Version20.4 Updater2

Juniper ≫ Junos Version21.1 Updater1

Juniper ≫ Junos Os Evolved Version <= 20.3

Juniper ≫ Junos Os Evolved Version20.4 Updater1

Juniper ≫ Junos Os Evolved Version20.4 Updater1-s1

Juniper ≫ Junos Os Evolved Version20.4 Updater1-s2

Juniper ≫ Junos Os Evolved Version20.4 Updater2

Juniper ≫ Junos Os Evolved Version20.4 Updater2-s1

Juniper ≫ Junos Os Evolved Version20.4 Updater2-s2

Juniper ≫ Junos Os Evolved Version21.1 Update-

Juniper ≫ Junos Os Evolved Version21.1 Updater1

Juniper ≫ Junos Os Evolved Version21.1 Updater1-s1

Juniper ≫ Junos Os Evolved Version21.1 Updater2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.12%	0.317

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.6	3.9	9.2	AV:L/AC:L/Au:N/C:N/I:C/A:C
sirt@juniper.net	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

https://kb.juniper.net/JSA11222

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-31360

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-31360

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-31360

EUVD