CVE-2026-33773

EPSS 0.05%
Veröffentlicht 09.04.2026 22:16:25
Zuletzt bearbeitet 17.04.2026 17:56:54
Quelle sirt@juniper.net
CVE-Watchlists
Login
Unerledigt
Login

Junos OS: EX Series, QFX Series: If the same egress filter is configured on both an IRB and a physical interface one of those is not applied

An Incorrect Initialization of Resource vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on specific EX Series and QFX Series device allows an unauthenticated, network-based attacker to cause an integrity impact to downstream networks.

When the same family inet or inet6 filter is applied on an IRB interface and on a physical interface as egress filter on EX4100, EX4400, EX4650 and QFX5120 devices, only one of the two filters will be applied, which can lead to traffic being sent out one of these interfaces which should have been blocked.

This issue affects Junos OS on EX Series and QFX Series:
  *  23.4 version 23.4R2-S6,
  *  24.2 version 24.2R2-S3.


No other Junos OS versions are affected.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 4

NVD 2 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Juniper ≫ Junos Version23.4 Updater2-s6

   Juniper ≫ Ex2300 Version-
   Juniper ≫ Ex2300-c Version-
   Juniper ≫ Ex3400 Version-
   Juniper ≫ Ex4000 Version-
   Juniper ≫ Ex4100 Version-
   Juniper ≫ Ex4100-f Version-
   Juniper ≫ Ex4100-h Version-
   Juniper ≫ Ex4300 Version-
   Juniper ≫ Ex4400 Version-
   Juniper ≫ Ex4600 Version-
   Juniper ≫ Ex4650 Version-
   Juniper ≫ Ex9204 Version-
   Juniper ≫ Ex9208 Version-
   Juniper ≫ Ex9214 Version-
   Juniper ≫ Qfx10008 Version-
   Juniper ≫ Qfx10016 Version-
   Juniper ≫ Qfx5110 Version-
   Juniper ≫ Qfx5120 Version-
   Juniper ≫ Qfx5130 Version-
   Juniper ≫ Qfx5200 Version-
   Juniper ≫ Qfx5210 Version-
   Juniper ≫ Qfx5220 Version-
   Juniper ≫ Qfx5230-64cd Version-
   Juniper ≫ Qfx5240 Version-
   Juniper ≫ Qfx5241 Version-
   Juniper ≫ Qfx5700 Version-

Juniper ≫ Junos Version24.2 Updater2-s3

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.157

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
sirt@juniper.net	5.8	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
sirt@juniper.net	6.9	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:X/RE:M/U:X

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://kb.juniper.net/JSA107815

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2026-33773

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-33773

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-33773

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-33773