Skip to content

CyberIQs – Home
Blog
About Us
Contact Us

Thousands of Juniper Devices Vulnerable to Unauthenticated RCE Flaw

CyberIQs
September 19, 2023

Go to Home » cyber

An estimated 12,000 Juniper SRX firewalls and EX switches are vulnerable to a fileless remote code execution flaw that attackers can exploit without authentication.

In August, Juniper disclosed numerous ‘PHP environment variant manipulation' (CVE-2023-36844/CVE-2023-36845) and ‘Missing Authentication for Critical Function' (CVE-2023-36846/CVE-2023-36847) vulnerabilities that by themselves only had a ‘medium' severity rating of 5.3.

However, when chained together, these vulnerabilities became a

Read more

Tags: exploit, remote code, environment, CVE, vulnerabilities, authentication, php, RCE, Medium, Malware and Vulnerabilities, 2023

Related Posts

Recent Juniper Flaws Chained In Attacks Following PoC Exploit Publicationa
Threat Brief: RCE Vulnerability CVE-2023-3519 on Customer-Managed Citrix Serversa
PHPFusion Flaw Allows Attackers to Read Critical System Dataa
Multiple Splunk Enterprise Flaws Let Attackers Execute Arbitrary Codea
CVE-2023-32560: Critical Remote Code Execution Vulnerabilities in Ivanti Avalanchea

AI News

KDnuggets News, September 27: ChatGPT Projects Cheat Sheet • Introduction to PyTorch & Lightning AI

September 27, 2023 9:45 am

Tsinghua University Researchers Introduce OpenChat: A Novel Artificial Intelligence AI Framework Enhancing Open-Source Language Models with Mixed-Quality Data

September 27, 2023 9:24 am

Does AI have a right to free speech? Only if it supports our right to free thought

September 27, 2023 9:08 am

Cyber News

Appdome unveils mobile anti-malware protections

September 27, 2023 12:00 pm

The BadUSBs are Back In Town

September 27, 2023 11:57 am

The Rise of Automotive Hacking: How to Secure Your Vehicles Against Hacking

September 27, 2023 11:54 am

Blog

Hitrust Certification

May 2, 2023 8:14 am

What is the best cloud security certification, CCSP, CCSK or CCAK?

April 21, 2023 9:23 pm

The Top 3 Countries With The Best Cyber Warfare Capabilities

April 2, 2023 2:47 pm

Find us on social media

Facebook Twitter Linkedin Reddit

© 2023 CyberIQs | All rights reserved.

News
About Us
Contact Us
Cookie Policy
Disclaimer
Privacy Statement

Follow Us

Facebook Twitter Linkedin

Manage Cookie Consent

We use cookies to optimize our website and our service.

Functional Functional Always active

The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.

Preferences Preferences

The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.

Statistics Statistics

The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.

Marketing Marketing

The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.

Manage options Manage services Manage vendors Read more about these purposes

View preferences

{title} {title} {title}