Description
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information.

A local user with low privileges can execute the CLI command 'show mgd' with specific arguments which will expose sensitive information.

This issue affects

Junos OS:
* all versions before 22.4R3-S8,
* 23.2 versions before 23.2R2-S6,
* 23.4 versions before 23.4R2-S6,
* 24.2 versions before 24.2R2-S4,
* 24.4 versions before 24.4R2-S1,
* 25.2 version before 25.2R1-S2, 25.2R2;



Junos OS Evolved:
* all versions before 23.2R2-S6-EVO,
* 23.4 version before 23.4R2-S6-EVO,
* 24.2 version before 24.2R2-S4-EVO,
* 24.4 versions before 24.4R2-S1-EVO,
* 25.2 versions before 25.2R2-EVO.
Published: 2026-04-09
Score: 6.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Information Disclosure through low-privilege CLI execution
Action: Patch Now
AI Analysis

Impact

A local user with low privileges can run the CLI command 'show mgd' against Juniper Networks Junos OS or Junos OS Evolved, bypassing required authorization checks. This missing authorization flaw allows the extraction of sensitive configuration data and operational information that should only be accessible to privileged accounts. The vulnerability is classified as Information Disclosure due to CWE-862, which identifies missing authorization.

Affected Systems

Systems running Junos OS versions older than 22.4R3-S8, all pre-23.2R2-S6 releases, pre-23.4R2-S6, pre-24.2R2-S4, pre-24.4R2-S1, and early 25.2 (before 25.2R1-S2 and 25.2R2) are impacted. Similarly, Junos OS Evolved versions older than 23.2R2-S6-EVO, 23.4R2-S6-EVO, 24.2R2-S4-EVO, 24.4R2-S1-EVO, and 25.2R2-EVO are vulnerable. All newer releases listed in the vendor’s advisory contain the patch and are not affected.

Risk and Exploitability

The CVSS base score of 6.8 indicates a medium severity, and the absence of an EPSS score or KEV listing suggests limited current exploitation activity. Exploitation requires the attacker already have local CLI or SSH access with a low-privileged account, which is typical for administrators or service accounts, potentially allowing an insider or compromised credential holder to read confidential data. Administrators should treat this flaw as a moderate to high risk depending on the sensitivity of stored information and apply the recommended patches promptly.

Generated by OpenCVE AI on April 9, 2026 at 23:26 UTC.

Remediation

Vendor Solution

The following software releases have been updated to resolve this specific issue: Junos OS Evolved: 23.2R2-S6-EVO, 23.4R2-S6-EVO, 24.2R2-S4-EVO, 24.4R2-S1-EVO, 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases; Junos OS: 22.4R3-S8, 23.2R2-S6, 23.4R2-S6, 24.2R2-S4, 24.4R2-S1, 25.2R1-S2, 25.2R2, 25.4R1, and all subsequent releases.

Vendor Workaround

Use access lists or firewall filters to limit access to the CLI only from trusted hosts and administrators. Utilize CLI authorization to disallow execution of the 'show mgd' commands.

OpenCVE Recommended Actions

  • Apply the vendor-supplied patch by upgrading to a fixed release listed in the advisory (e.g., Junos OS 22.4R3-S8 or newer).
  • If an immediate upgrade is not possible, restrict CLI access to trusted hosts and administrators using access lists or firewall filters.
  • Configure CLI authorization rules to block execution of the 'show mgd' commands for low-privileged users.

Generated by OpenCVE AI on April 9, 2026 at 23:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

References
Link Providers
https://kb.juniper.net/JSA107866 cve-icon cve-icon
History

Fri, 10 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 10 Apr 2026 09:00:00 +0000

Type Values Removed Values Added
First Time appeared Juniper Networks
Juniper Networks junos Os
Juniper Networks junos Os Evolved
Vendors & Products Juniper Networks
Juniper Networks junos Os
Juniper Networks junos Os Evolved

Thu, 09 Apr 2026 22:00:00 +0000

Type Values Removed Values Added
Description A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information. A local user with low privileges can execute the CLI command 'show mgd' with specific arguments which will expose sensitive information. This issue affects Junos OS: * all versions before 22.4R3-S8, * 23.2 versions before 23.2R2-S6, * 23.4 versions before 23.4R2-S6, * 24.2 versions before 24.2R2-S4, * 24.4 versions before 24.4R2-S1, * 25.2 version before 25.2R1-S2, 25.2R2; Junos OS Evolved: * all versions before 23.2R2-S6-EVO, * 23.4 version before 23.4R2-S6-EVO, * 24.2 version before 24.2R2-S4-EVO, * 24.4 versions before 24.4R2-S1-EVO, * 25.2 versions before 25.2R2-EVO.
Title Junos OS and Junos OS Evolved: Specific low privileged CLI command exposes sensitive information
Weaknesses CWE-862
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

cvssV4_0

{'score': 6.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/AU:Y/RE:M'}

Subscriptions

Juniper Networks Junos Os Junos Os Evolved
cve-icon MITRE

Status: PUBLISHED

Assigner: juniper

Published:

Updated: 2026-04-10T14:13:45.754Z

Reserved: 2026-03-23T19:46:13.669Z

Link: CVE-2026-33776

cve-icon Vulnrichment

Updated: 2026-04-10T14:13:40.767Z

cve-icon NVD

Status : Received

Published: 2026-04-09T22:16:26.267

Modified: 2026-04-09T22:16:26.267

Link: CVE-2026-33776

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-10T09:27:54Z

Weaknesses