CVE-2026-33786

EPSS 0.02%
Veröffentlicht 09.04.2026 22:16:28
Zuletzt bearbeitet 17.04.2026 17:14:39
Quelle sirt@juniper.net
CVE-Watchlists
Login
Unerledigt
Login

Junos OS: SRX1600, SRX2300, SRX4300: When a specific show command is executed chassisd crashes

An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon (chassisd) of Juniper Networks Junos OS on SRX1600, SRX2300 and SRX4300 allows a local attacker with low privileges to cause a complete Denial of Service (DoS).

When a specific 'show chassis' CLI command is executed, chassisd crashes and restarts which causes a momentary impact to all traffic until all modules are online again.

This issue affects Junos OS on SRX1600, SRX2300 and SRX4300:



  *  24.4 versions before 24.4R1-S3, 24.4R2.


This issue does not affect Junos OS versions before 24.4R1.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 4 VulnDex Vulnerability Enrichment 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Juniper ≫ Junos Version24.4 Update-

   Juniper ≫ Srx1600 Version-
   Juniper ≫ Srx2300 Version-
   Juniper ≫ Srx4300 Version-

Juniper ≫ Junos Version24.4 Updater1

   Juniper ≫ Srx1600 Version-
   Juniper ≫ Srx2300 Version-
   Juniper ≫ Srx4300 Version-

Juniper ≫ Junos Version24.4 Updater1-s2

   Juniper ≫ Srx1600 Version-
   Juniper ≫ Srx2300 Version-
   Juniper ≫ Srx4300 Version-

Juniper ≫ Junos Version24.4 Updater2

   Juniper ≫ Srx1600 Version-
   Juniper ≫ Srx2300 Version-
   Juniper ≫ Srx4300 Version-

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.04

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
sirt@juniper.net	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
sirt@juniper.net	6.8	0	0	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:X/RE:M/U:X

CWE-754 Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

https://kb.juniper.net/JSA107810

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2026-33786

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-33786

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-33786

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-33786