The use of multiple hard-coded cryptographic keys in cSRX Series software in Juniper Networks Junos OS allows an attacker to take control of any instance of a cSRX deployment through device management services. This issue affects: Juniper Networks Junos OS on cSRX Series: All versions prior to 20.2R3; 20.3 versions prior to 20.3R2; 20.4 versions prior to 20.4R2.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://kb.juniper.net/JSA11157 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: juniper
Published: 2021-04-22T19:37:23.655216Z
Updated: 2024-09-17T03:13:48.705Z
Reserved: 2020-10-27T00:00:00
Link: CVE-2021-0266
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-04-22T20:15:09.877
Modified: 2022-09-20T17:08:36.293
Link: CVE-2021-0266
Redhat
No data.