CVE-2023-36844
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Summary
CVE-2023-36844: A critical vulnerability impacts Juniper Networks Junos OS on EX Series, allowing unauthenticated, network-based attackers to modify specific PHP environment variables. This modification leads to a partial loss of integrity, potentially enabling chaining to other vulnerabilities. Affected versions include all prior to 20.4R3-S9, 21.1 versions 21.1R1 and later (except 21.1R2 and 21.1R3), 21.2 versions prior to 21.2R3-S7, 21.3 versions prior to 21.3R3-S5, 21.4 versions prior to 21.4R3-S5, 22.1 versions prior to 22.1R3-S4, 22.2 versions prior to 22.2R3-S2, 22.3 versions prior to 22.3R3-S1, 22.4 versions prior to 22.4R2-S2 and 22.4R3, and 23.2 versions prior to 23.2R1-S1 and 23.2R2.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.