CVE-2023-36845

A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-based attacker to remotely execute code. Using a crafted request which sets the variable PHPRC an attacker is able to modify the PHP execution environment allowing the injection und execution of code. This issue affects Juniper Networks Junos OS on EX Series and SRX Series: * All versions prior to 20.4R3-S9; * 21.1 versions 21.1R1 and later; * 21.2 versions prior to 21.2R3-S7; * 21.3 versions prior to 21.3R3-S5; * 21.4 versions prior to 21.4R3-S5; * 22.1 versions prior to 22.1R3-S4; * 22.2 versions prior to 22.2R3-S2; * 22.3 versions prior to 22.3R2-S2, 22.3R3-S1; * 22.4 versions prior to 22.4R2-S1, 22.4R3; * 23.2 versions prior to 23.2R1-S1, 23.2R2.

CVSS v3.0 9.8 CRITICAL

9.8^/10

CVSS v3.0 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://packetstormsecurity.com/files/174865/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html	Exploit Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/174865/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html	Exploit Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/176969/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html	Exploit Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/176969/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html	Exploit Third Party Advisory VDB Entry
https://supportportal.juniper.net/JSA72300	Vendor Advisory
https://supportportal.juniper.net/JSA72300	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:juniper:junos::::::::
	cpe:2.3:o:juniper:junos:20.4:r3-s5::::::
	cpe:2.3:o:juniper:junos:20.4:r3-s4::::::
	cpe:2.3:o:juniper:junos:20.4:r1::::::
	cpe:2.3:o:juniper:junos:20.4:r1-s1::::::
	cpe:2.3:o:juniper:junos:20.4:r2::::::
	cpe:2.3:o:juniper:junos:20.4:r2-s1::::::
	cpe:2.3:o:juniper:junos:20.4:r3::::::
	cpe:2.3:o:juniper:junos:20.4:r3-s1::::::
	cpe:2.3:o:juniper:junos:20.4:r2-s2::::::
	cpe:2.3:o:juniper:junos:20.4:-::::::
	cpe:2.3:o:juniper:junos:20.4:r3-s2::::::
	cpe:2.3:o:juniper:junos:20.4:r3-s3::::::
	cpe:2.3:o:juniper:junos:20.4:r3-s7::::::
	cpe:2.3:o:juniper:junos:20.4:r3-s6::::::
	cpe:2.3:o:juniper:junos:20.4:r3-s8::::::
	cpe:2.3:o:juniper:junos:21.1:r3-s5::::::
	cpe:2.3:o:juniper:junos:21.1:r3-s1::::::
	cpe:2.3:o:juniper:junos:21.1:r2::::::
	cpe:2.3:o:juniper:junos:21.1:r2-s2::::::
	cpe:2.3:o:juniper:junos:21.1:r3::::::
	cpe:2.3:o:juniper:junos:21.1:r2-s1::::::
	cpe:2.3:o:juniper:junos:21.1:r1-s1::::::
	cpe:2.3:o:juniper:junos:21.1:r1::::::
	cpe:2.3:o:juniper:junos:21.1:r3-s2::::::
	cpe:2.3:o:juniper:junos:21.1:r3-s3::::::
	cpe:2.3:o:juniper:junos:21.1:r3-s4::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s2::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s1::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s3::::::
	cpe:2.3:o:juniper:junos:21.2:r1::::::
	cpe:2.3:o:juniper:junos:21.2:r1-s1::::::
	cpe:2.3:o:juniper:junos:21.2:-::::::
	cpe:2.3:o:juniper:junos:21.2:r1-s2::::::
	cpe:2.3:o:juniper:junos:21.2:r2-s1::::::
	cpe:2.3:o:juniper:junos:21.2:r2-s2::::::
	cpe:2.3:o:juniper:junos:21.2:r2::::::
	cpe:2.3:o:juniper:junos:21.2:r3::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s4::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s5::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s6::::::
	cpe:2.3:o:juniper:junos:21.3:r1-s1::::::
	cpe:2.3:o:juniper:junos:21.3:r1-s2::::::
	cpe:2.3:o:juniper:junos:21.3:r2-s1::::::
	cpe:2.3:o:juniper:junos:21.3:r2-s2::::::
	cpe:2.3:o:juniper:junos:21.3:r3::::::
	cpe:2.3:o:juniper:junos:21.3:r3-s1::::::
	cpe:2.3:o:juniper:junos:21.3:r1::::::
	cpe:2.3:o:juniper:junos:21.3:r2::::::
	cpe:2.3:o:juniper:junos:21.3:r3-s3::::::
	cpe:2.3:o:juniper:junos:21.3:r3-s4::::::
	cpe:2.3:o:juniper:junos:21.3:r3-s2::::::
	cpe:2.3:o:juniper:junos:21.3:-::::::
	cpe:2.3:o:juniper:junos:21.4:r2-s2::::::
	cpe:2.3:o:juniper:junos:21.4:r3::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s3::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s2::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s1::::::
	cpe:2.3:o:juniper:junos:21.4:r1-s1::::::
	cpe:2.3:o:juniper:junos:21.4:r2::::::
	cpe:2.3:o:juniper:junos:21.4:r2-s1::::::
	cpe:2.3:o:juniper:junos:21.4:r1-s2::::::
	cpe:2.3:o:juniper:junos:21.4:-::::::
	cpe:2.3:o:juniper:junos:21.4:r1::::::
cpe:2.3:o:juniper:junos:21.4:r3-s4::::::
cpe:2.3:o:juniper:junos:22.1:r3-s3::::::
cpe:2.3:o:juniper:junos:22.1:r1::::::
cpe:2.3:o:juniper:junos:22.1:r3::::::
cpe:2.3:o:juniper:junos:22.1:r2-s1::::::
cpe:2.3:o:juniper:junos:22.1:r3-s2::::::
cpe:2.3:o:juniper:junos:22.1:r1-s2::::::
cpe:2.3:o:juniper:junos:22.1:r2-s2::::::
cpe:2.3:o:juniper:junos:22.1:r1-s1::::::
cpe:2.3:o:juniper:junos:22.1:r2::::::
cpe:2.3:o:juniper:junos:22.1:r3-s1::::::
cpe:2.3:o:juniper:junos:22.2:r1::::::
cpe:2.3:o:juniper:junos:22.2:r1-s1::::::
cpe:2.3:o:juniper:junos:22.2:r2::::::
cpe:2.3:o:juniper:junos:22.2:r2-s2::::::
cpe:2.3:o:juniper:junos:22.2:r3::::::
cpe:2.3:o:juniper:junos:22.2:r2-s1::::::
cpe:2.3:o:juniper:junos:22.2:r1-s2::::::
cpe:2.3:o:juniper:junos:22.2:r3-s1::::::
cpe:2.3:o:juniper:junos:22.3:r1-s1::::::
cpe:2.3:o:juniper:junos:22.3:r2-s1::::::
cpe:2.3:o:juniper:junos:22.3:r1-s2::::::
cpe:2.3:o:juniper:junos:22.3:r2::::::
cpe:2.3:o:juniper:junos:22.3:r1::::::
cpe:2.3:o:juniper:junos:22.4:r1-s1::::::
cpe:2.3:o:juniper:junos:22.4:r1-s2::::::
cpe:2.3:o:juniper:junos:22.4:r2::::::
cpe:2.3:o:juniper:junos:22.4:r1::::::
cpe:2.3:o:juniper:junos:23.2:r1::::::

OR	cpe:2.3:h:juniper:srx100:-:::::::*
	cpe:2.3:h:juniper:srx110:-:::::::*
	cpe:2.3:h:juniper:srx1400:-:::::::*
	cpe:2.3:h:juniper:srx1500:-:::::::*
	cpe:2.3:h:juniper:srx210:-:::::::*
	cpe:2.3:h:juniper:srx220:-:::::::*
	cpe:2.3:h:juniper:srx240:-:::::::*
	cpe:2.3:h:juniper:srx240h2:-:::::::*
	cpe:2.3:h:juniper:srx240m:-:::::::*
	cpe:2.3:h:juniper:srx300:-:::::::*
	cpe:2.3:h:juniper:srx320:-:::::::*
	cpe:2.3:h:juniper:srx340:-:::::::*
	cpe:2.3:h:juniper:srx3400:-:::::::*
	cpe:2.3:h:juniper:srx345:-:::::::*
	cpe:2.3:h:juniper:srx3600:-:::::::*
	cpe:2.3:h:juniper:srx380:-:::::::*
	cpe:2.3:h:juniper:srx4000:-:::::::*
	cpe:2.3:h:juniper:srx4100:-:::::::*
	cpe:2.3:h:juniper:srx4200:-:::::::*
	cpe:2.3:h:juniper:srx4600:-:::::::*
	cpe:2.3:h:juniper:srx5000:-:::::::*
	cpe:2.3:h:juniper:srx5400:-:::::::*
	cpe:2.3:h:juniper:srx550:-:::::::*
	cpe:2.3:h:juniper:srx550_hm:-:::::::*
	cpe:2.3:h:juniper:srx550m:-:::::::*
	cpe:2.3:h:juniper:srx5600:-:::::::*
	cpe:2.3:h:juniper:srx5800:-:::::::*
	cpe:2.3:h:juniper:srx650:-:::::::*

History

07 Mar 2025, 22:03

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8

13 Feb 2025, 17:16

Type	Values Removed	Values Added
Summary	A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-based attacker to remotely execute code. Using a crafted request which sets the variable PHPRC an attacker is able to modify the PHP execution environment allowing the injection und execution of code. This issue affects Juniper Networks Junos OS on EX Series and SRX Series: * All versions prior to 20.4R3-S9; * 21.1 versions 21.1R1 and later; * 21.2 versions prior to 21.2R3-S7; * 21.3 versions prior to 21.3R3-S5; * 21.4 versions prior to 21.4R3-S5; * 22.1 versions prior to 22.1R3-S4; * 22.2 versions prior to 22.2R3-S2; * 22.3 versions prior to 22.3R2-S2, 22.3R3-S1; * 22.4 versions prior to 22.4R2-S1, 22.4R3; * 23.2 versions prior to 23.2R1-S1, 23.2R2.	A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-based attacker to remotely execute code. Using a crafted request which sets the variable PHPRC an attacker is able to modify the PHP execution environment allowing the injection und execution of code. This issue affects Juniper Networks Junos OS on EX Series and SRX Series: * All versions prior to 20.4R3-S9; * 21.1 versions 21.1R1 and later; * 21.2 versions prior to 21.2R3-S7; * 21.3 versions prior to 21.3R3-S5; * 21.4 versions prior to 21.4R3-S5; * 22.1 versions prior to 22.1R3-S4; * 22.2 versions prior to 22.2R3-S2; * 22.3 versions prior to 22.3R2-S2, 22.3R3-S1; * 22.4 versions prior to 22.4R2-S1, 22.4R3; * 23.2 versions prior to 23.2R1-S1, 23.2R2.

27 Jan 2025, 21:39

Type	Values Removed	Values Added
References	~~(MISC) https://supportportal.juniper.net/JSA72300 - Mitigation, Vendor Advisory~~	() https://supportportal.juniper.net/JSA72300 - Vendor Advisory
References	~~(MISC) http://packetstormsecurity.com/files/174865/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry~~	() http://packetstormsecurity.com/files/174865/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry
CVSS	v2 : ~~unknown~~ v3 : ~~9.8~~	v2 : unknown v3 : unknown
CPE	cpe:2.3:h:juniper:ex4300-48p:-:::::::* cpe:2.3:h:juniper:ex4300-48t-s:-:::::::* cpe:2.3:h:juniper:ex9253:-:::::::* cpe:2.3:h:juniper:ex2300-24t:-:::::::* cpe:2.3:h:juniper:ex2200-vc:-:::::::* cpe:2.3:h:juniper:ex4300-24t-s:-:::::::* cpe:2.3:h:juniper:ex2200:-:::::::* cpe:2.3:h:juniper:ex4650:-:::::::* cpe:2.3:h:juniper:ex9208:-:::::::* cpe:2.3:h:juniper:ex8216:-:::::::* cpe:2.3:h:juniper:ex4300-24p:-:::::::* cpe:2.3:h:juniper:ex4200-vc:-:::::::* cpe:2.3:h:juniper:ex8200:-:::::::* cpe:2.3:h:juniper:ex4300-mp:-:::::::* cpe:2.3:h:juniper:ex2300-48mp:-:::::::* cpe:2.3:h:juniper:ex4300-24p-s:-:::::::* cpe:2.3:h:juniper:ex3200:-:::::::* cpe:2.3:h:juniper:ex8200-vc:-:::::::* cpe:2.3:h:juniper:ex3400:-:::::::* cpe:2.3:h:juniper:ex4300-32f-s:-:::::::* cpe:2.3:h:juniper:ex9214:-:::::::* cpe:2.3:h:juniper:ex4300:-:::::::* cpe:2.3:h:juniper:ex4300-48t:-:::::::* cpe:2.3:h:juniper:ex2200-c:-:::::::* cpe:2.3:h:juniper:ex3300-vc:-:::::::* cpe:2.3:h:juniper:ex4300-48mp:-:::::::* cpe:2.3:h:juniper:ex9200:-:::::::* cpe:2.3:h:juniper:ex4300-vc:-:::::::* cpe:2.3:h:juniper:ex9250:-:::::::* cpe:2.3:h:juniper:ex4600-vc:-:::::::* cpe:2.3:h:juniper:ex2300-24mp:-:::::::* cpe:2.3:h:juniper:ex4550:-:::::::* cpe:2.3:h:juniper:ex4500-vc:-:::::::* cpe:2.3:h:juniper:ex4300-48mp-s:-:::::::* cpe:2.3:h:juniper:ex4550\/vc:-:::::::* cpe:2.3:h:juniper:ex4300-48t-dc:-:::::::* cpe:2.3:h:juniper:ex2300-48t:-:::::::* cpe:2.3:h:juniper:ex4300-48tdc-afi:-:::::::* cpe:2.3:h:juniper:ex4300m:-:::::::* cpe:2.3:h:juniper:ex4300-48tdc:-:::::::* cpe:2.3:h:juniper:ex3300:-:::::::* cpe:2.3:h:juniper:ex4300-48p-s:-:::::::* cpe:2.3:h:juniper:ex2300m:-:::::::* cpe:2.3:h:juniper:ex6200:-:::::::* cpe:2.3:h:juniper:ex6210:-:::::::* cpe:2.3:h:juniper:ex4300-32f:-:::::::* cpe:2.3:h:juniper:ex4600:-:::::::* cpe:2.3:h:juniper:ex9251:-:::::::* cpe:2.3:h:juniper:ex2300-48p:-:::::::* cpe:2.3:h:juniper:ex2300-24p:-:::::::* cpe:2.3:h:juniper:ex8208:-:::::::* cpe:2.3:h:juniper:ex4300-48tafi:-:::::::* cpe:2.3:h:juniper:ex4500:-:::::::* cpe:2.3:h:juniper:ex4550-vc:-:::::::* cpe:2.3:h:juniper:ex4300-48t-afi:-:::::::* cpe:2.3:h:juniper:ex2300-c:-:::::::* cpe:2.3:h:juniper:ex2300:-:::::::* cpe:2.3:h:juniper:ex9204:-:::::::* cpe:2.3:h:juniper:ex4300-32f-dc:-:::::::* cpe:2.3:h:juniper:ex4300-48t-dc-afi:-:::::::* cpe:2.3:h:juniper:ex4300-24t:-:::::::* cpe:2.3:h:juniper:ex4400:-:::::::* cpe:2.3:h:juniper:ex4200:-:::::::*

27 Jun 2024, 14:42

Type	Values Removed	Values Added
CWE	~~CWE-473~~	NVD-CWE-Other
CPE		cpe:2.3:o:juniper:junos:23.2:r1:::::: cpe:2.3:o:juniper:junos:22.1:r3-s3:::::: cpe:2.3:o:juniper:junos:20.4:r3-s8:::::: cpe:2.3:o:juniper:junos:21.2:r3-s6::::::
References	~~() http://packetstormsecurity.com/files/176969/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html -~~	() http://packetstormsecurity.com/files/176969/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry
References	~~(MISC) http://packetstormsecurity.com/files/174865/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html -~~	(MISC) http://packetstormsecurity.com/files/174865/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html - Exploit, Third Party Advisory, VDB Entry

02 Feb 2024, 17:15

Type	Values Removed	Values Added
Summary	A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-based attacker to control certain, important environments variables. Utilizing a crafted request an attacker is able to modify a certain PHP environment variable leading to partial loss of integrity, which may allow chaining to other vulnerabilities. This issue affects Juniper Networks Junos OS on SRX Series: * All versions prior to 21.4R3-S5; * 22.1 versions prior to 22.1R3-S4; * 22.2 versions prior to 22.2R3-S2; * 22.3 versions prior to 22.3R2-S2, 22.3R3-S1; * 22.4 versions prior to 22.4R2-S1, 22.4R3; * 23.2 versions prior to 23.2R1-S1, 23.2R2.	A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-based attacker to remotely execute code. Using a crafted request which sets the variable PHPRC an attacker is able to modify the PHP execution environment allowing the injection und execution of code. This issue affects Juniper Networks Junos OS on EX Series and SRX Series: * All versions prior to 20.4R3-S9; * 21.1 versions 21.1R1 and later; * 21.2 versions prior to 21.2R3-S7; * 21.3 versions prior to 21.3R3-S5; * 21.4 versions prior to 21.4R3-S5; * 22.1 versions prior to 22.1R3-S4; * 22.2 versions prior to 22.2R3-S2; * 22.3 versions prior to 22.3R2-S2, 22.3R3-S1; * 22.4 versions prior to 22.4R2-S1, 22.4R3; * 23.2 versions prior to 23.2R1-S1, 23.2R2.
References		() http://packetstormsecurity.com/files/176969/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html - (MISC) http://packetstormsecurity.com/files/174865/Juniper-SRX-Firewall-EX-Switch-Remote-Code-Execution.html -
CVSS	v2 : ~~unknown~~ v3 : ~~5.3~~	v2 : unknown v3 : 9.8

24 Aug 2023, 20:58

Type	Values Removed	Values Added
First Time		Juniper ex3400 Juniper srx550 Juniper ex4300-48t-dc Juniper ex4300-mp Juniper ex2300-24t Juniper srx110 Juniper ex4650 Juniper ex2300-24p Juniper ex9214 Juniper ex9200 Juniper srx5600 Juniper srx240m Juniper ex4300-48t-afi Juniper srx300 Juniper ex9251 Juniper ex4300-48t Juniper ex4600-vc Juniper ex2300-24mp Juniper ex4300-48t-s Juniper srx340 Juniper ex4300-24t Juniper ex4300-48mp Juniper ex4300-48tdc Juniper junos Juniper srx4000 Juniper ex2300m Juniper ex4200 Juniper ex8216 Juniper srx550m Juniper ex9253 Juniper ex2300-48mp Juniper ex4300-48tdc-afi Juniper ex4300m Juniper srx210 Juniper ex4300 Juniper srx4600 Juniper ex2300 Juniper ex4550-vc Juniper ex4550\/vc Juniper ex4300-48tafi Juniper ex3300-vc Juniper ex4300-24p-s Juniper ex2300-48t Juniper ex8200-vc Juniper ex3300 Juniper ex4300-48mp-s Juniper ex4500-vc Juniper ex2300-c Juniper srx3600 Juniper Juniper srx380 Juniper srx240 Juniper ex3200 Juniper ex8208 Juniper srx5400 Juniper ex4300-48t-dc-afi Juniper ex4550 Juniper ex4600 Juniper srx4100 Juniper ex4200-vc Juniper srx5800 Juniper ex2200-vc Juniper srx1400 Juniper srx220 Juniper ex2200-c Juniper srx3400 Juniper srx1500 Juniper srx100 Juniper srx320 Juniper ex2300-48p Juniper ex4300-24p Juniper ex4300-vc Juniper ex9250 Juniper ex9208 Juniper ex4300-48p Juniper srx4200 Juniper ex4400 Juniper ex4300-24t-s Juniper srx345 Juniper ex2200 Juniper srx240h2 Juniper ex6210 Juniper srx550 Hm Juniper ex9204 Juniper ex4500 Juniper ex8200 Juniper ex4300-48p-s Juniper ex6200 Juniper ex4300-32f Juniper srx5000 Juniper ex4300-32f-s Juniper srx650 Juniper ex4300-32f-dc
CPE		cpe:2.3:o:juniper:junos:20.4:r1-s1:::::: cpe:2.3:h:juniper:ex9250:-:::::::* cpe:2.3:h:juniper:ex4300-32f-s:-:::::::* cpe:2.3:h:juniper:ex4650:-:::::::* cpe:2.3:o:juniper:junos:21.2:r1:::::: cpe:2.3:h:juniper:ex4550:-:::::::* cpe:2.3:o:juniper:junos:22.2:r2:::::: cpe:2.3:h:juniper:ex9253:-:::::::* cpe:2.3:h:juniper:srx1400:-:::::::* cpe:2.3:o:juniper:junos:21.1:r1-s1:::::: cpe:2.3:o:juniper:junos:21.2:r3-s4:::::: cpe:2.3:o:juniper:junos:21.3:r3-s2:::::: cpe:2.3:o:juniper:junos:22.2:r1-s1:::::: cpe:2.3:h:juniper:ex2300-48mp:-:::::::* cpe:2.3:h:juniper:srx220:-:::::::* cpe:2.3:o:juniper:junos:21.1:r2:::::: cpe:2.3:h:juniper:ex4600:-:::::::* cpe:2.3:o:juniper:junos:21.4:r2:::::: cpe:2.3:h:juniper:ex4300-48tdc-afi:-:::::::* cpe:2.3:o:juniper:junos:20.4:r1:::::: cpe:2.3:h:juniper:ex2300-48p:-:::::::* cpe:2.3:h:juniper:ex4300-48p:-:::::::* cpe:2.3:o:juniper:junos:22.2:r2-s1:::::: cpe:2.3:o:juniper:junos:22.1:r1-s2:::::: cpe:2.3:o:juniper:junos:21.3:r3-s3:::::: cpe:2.3:h:juniper:ex4300:-:::::::* cpe:2.3:h:juniper:ex4550\/vc:-:::::::* cpe:2.3:h:juniper:ex4300-48t-dc-afi:-:::::::* cpe:2.3:h:juniper:srx3600:-:::::::* cpe:2.3:h:juniper:ex2300:-:::::::* cpe:2.3:o:juniper:junos:21.1:r2-s1:::::: cpe:2.3:o:juniper:junos:22.3:r2-s1:::::: cpe:2.3:o:juniper:junos:21.4:r2-s1:::::: cpe:2.3:h:juniper:ex4300-48t-afi:-:::::::* cpe:2.3:h:juniper:ex3200:-:::::::* cpe:2.3:o:juniper:junos:21.4:r3:::::: cpe:2.3:o:juniper:junos:20.4:r2-s1:::::: cpe:2.3:o:juniper:junos:21.2:r2-s1:::::: cpe:2.3:h:juniper:srx650:-:::::::* cpe:2.3:h:juniper:ex4400:-:::::::* cpe:2.3:o:juniper:junos:21.3:r2:::::: cpe:2.3:h:juniper:srx550:-:::::::* cpe:2.3:h:juniper:ex4300-24t-s:-:::::::* cpe:2.3:o:juniper:junos:20.4:r3-s5:::::: cpe:2.3:o:juniper:junos:21.1:r3-s1:::::: cpe:2.3:h:juniper:srx100:-:::::::* cpe:2.3:h:juniper:srx550m:-:::::::* cpe:2.3:o:juniper:junos:21.3:r2-s1:::::: cpe:2.3:o:juniper:junos:22.1:r2-s2:::::: cpe:2.3:h:juniper:srx300:-:::::::* cpe:2.3:h:juniper:ex4300-mp:-:::::::* cpe:2.3:h:juniper:ex4550-vc:-:::::::* cpe:2.3:h:juniper:ex2300-c:-:::::::* cpe:2.3:o:juniper:junos:21.2:r3-s5:::::: cpe:2.3:o:juniper:junos:21.3:r3:::::: cpe:2.3:o:juniper:junos:21.2:r3-s2:::::: cpe:2.3:o:juniper:junos:22.4:r1:::::: cpe:2.3:h:juniper:ex4300-24t:-:::::::* cpe:2.3:h:juniper:ex4300-24p:-:::::::* cpe:2.3:h:juniper:ex2200:-:::::::* cpe:2.3:o:juniper:junos:21.1:r3-s4:::::: cpe:2.3:h:juniper:ex2200-c:-:::::::* cpe:2.3:h:juniper:srx240h2:-:::::::* cpe:2.3:h:juniper:ex2300-48t:-:::::::* cpe:2.3:o:juniper:junos:22.4:r1-s1:::::: cpe:2.3:o:juniper:junos:21.4:r3-s1:::::: cpe:2.3:o:juniper:junos:22.2:r1-s2:::::: cpe:2.3:o:juniper:junos:22.1:r1-s1:::::: cpe:2.3:h:juniper:ex4300-48mp-s:-:::::::* cpe:2.3:o:juniper:junos:20.4:r3-s6:::::: cpe:2.3:o:juniper:junos:22.3:r1:::::: cpe:2.3:h:juniper:ex2200-vc:-:::::::* cpe:2.3:o:juniper:junos:20.4:r3-s1:::::: cpe:2.3:o:juniper:junos:22.3:r1-s1:::::: cpe:2.3:h:juniper:ex8200-vc:-:::::::* cpe:2.3:h:juniper:ex2300-24mp:-:::::::* cpe:2.3:o:juniper:junos:21.3:-:::::: cpe:2.3:o:juniper:junos:21.4:r1-s1:::::: cpe:2.3:o:juniper:junos:22.2:r1:::::: cpe:2.3:h:juniper:srx380:-:::::::* cpe:2.3:h:juniper:srx5400:-:::::::* cpe:2.3:h:juniper:ex4200-vc:-:::::::* cpe:2.3:h:juniper:ex4300m:-:::::::* cpe:2.3:h:juniper:srx110:-:::::::* cpe:2.3:o:juniper:junos:21.4:r2-s2:::::: cpe:2.3:h:juniper:ex4300-48t-s:-:::::::* cpe:2.3:o:juniper:junos:21.2:r3:::::: cpe:2.3:o:juniper:junos:21.3:r2-s2:::::: cpe:2.3:h:juniper:ex4500:-:::::::* cpe:2.3:o:juniper:junos:21.4:r3-s3:::::: cpe:2.3:o:juniper:junos:21.1:r3-s3:::::: cpe:2.3:o:juniper:junos:::::::: cpe:2.3:o:juniper:junos:21.1:r1:::::: cpe:2.3:o:juniper:junos:22.2:r2-s2:::::: cpe:2.3:o:juniper:junos:21.2:-:::::: cpe:2.3:o:juniper:junos:21.1:r3-s5:::::: cpe:2.3:o:juniper:junos:21.3:r1:::::: cpe:2.3:o:juniper:junos:22.4:r2:::::: cpe:2.3:o:juniper:junos:22.1:r1:::::: cpe:2.3:h:juniper:srx4600:-:::::::* cpe:2.3:o:juniper:junos:20.4:r3-s7:::::: cpe:2.3:o:juniper:junos:22.3:r1-s2:::::: cpe:2.3:h:juniper:ex4300-48t:-:::::::* cpe:2.3:h:juniper:srx240m:-:::::::* cpe:2.3:o:juniper:junos:22.1:r3-s2:::::: cpe:2.3:o:juniper:junos:21.3:r1-s2:::::: cpe:2.3:o:juniper:junos:22.2:r3-s1:::::: cpe:2.3:o:juniper:junos:21.2:r3-s3:::::: cpe:2.3:o:juniper:junos:22.1:r2:::::: cpe:2.3:o:juniper:junos:22.3:r2:::::: cpe:2.3:h:juniper:ex4300-48mp:-:::::::* cpe:2.3:o:juniper:junos:22.1:r2-s1:::::: cpe:2.3:o:juniper:junos:20.4:r3-s3:::::: cpe:2.3:o:juniper:junos:21.1:r2-s2:::::: cpe:2.3:o:juniper:junos:22.1:r3:::::: cpe:2.3:h:juniper:ex4300-48t-dc:-:::::::* cpe:2.3:o:juniper:junos:21.4:-:::::: cpe:2.3:h:juniper:ex9200:-:::::::* cpe:2.3:h:juniper:ex9214:-:::::::* cpe:2.3:h:juniper:ex4500-vc:-:::::::* cpe:2.3:h:juniper:ex9251:-:::::::* cpe:2.3:o:juniper:junos:21.4:r3-s4:::::: cpe:2.3:o:juniper:junos:21.1:r3:::::: cpe:2.3:h:juniper:ex4600-vc:-:::::::* cpe:2.3:h:juniper:ex8216:-:::::::* cpe:2.3:o:juniper:junos:21.2:r3-s1:::::: cpe:2.3:h:juniper:ex9204:-:::::::* cpe:2.3:h:juniper:srx5000:-:::::::* cpe:2.3:h:juniper:ex3300-vc:-:::::::* cpe:2.3:o:juniper:junos:22.2:r3:::::: cpe:2.3:o:juniper:junos:21.3:r1-s1:::::: cpe:2.3:h:juniper:ex4300-32f:-:::::::* cpe:2.3:o:juniper:junos:20.4:r3:::::: cpe:2.3:o:juniper:junos:22.4:r1-s2:::::: cpe:2.3:o:juniper:junos:21.3:r3-s1:::::: cpe:2.3:h:juniper:ex4300-vc:-:::::::* cpe:2.3:h:juniper:ex4300-48tdc:-:::::::* cpe:2.3:h:juniper:srx550_hm:-:::::::* cpe:2.3:h:juniper:ex2300m:-:::::::* cpe:2.3:h:juniper:ex3400:-:::::::* cpe:2.3:h:juniper:ex4300-32f-dc:-:::::::* cpe:2.3:h:juniper:srx5800:-:::::::* cpe:2.3:h:juniper:ex4200:-:::::::* cpe:2.3:o:juniper:junos:21.1:r3-s2:::::: cpe:2.3:h:juniper:srx210:-:::::::* cpe:2.3:o:juniper:junos:22.1:r3-s1:::::: cpe:2.3:h:juniper:ex8208:-:::::::* cpe:2.3:o:juniper:junos:21.4:r1-s2:::::: cpe:2.3:h:juniper:ex2300-24p:-:::::::* cpe:2.3:h:juniper:ex6210:-:::::::* cpe:2.3:o:juniper:junos:21.4:r1:::::: cpe:2.3:h:juniper:srx320:-:::::::* cpe:2.3:h:juniper:ex4300-24p-s:-:::::::* cpe:2.3:h:juniper:ex8200:-:::::::* cpe:2.3:o:juniper:junos:20.4:r2:::::: cpe:2.3:h:juniper:srx1500:-:::::::* cpe:2.3:o:juniper:junos:21.2:r1-s1:::::: cpe:2.3:o:juniper:junos:20.4:-:::::: cpe:2.3:o:juniper:junos:21.2:r1-s2:::::: cpe:2.3:h:juniper:srx345:-:::::::* cpe:2.3:h:juniper:ex3300:-:::::::* cpe:2.3:h:juniper:srx4000:-:::::::* cpe:2.3:o:juniper:junos:20.4:r3-s2:::::: cpe:2.3:h:juniper:ex9208:-:::::::* cpe:2.3:o:juniper:junos:21.4:r3-s2:::::: cpe:2.3:h:juniper:srx240:-:::::::* cpe:2.3:h:juniper:srx5600:-:::::::* cpe:2.3:h:juniper:ex4300-48p-s:-:::::::* cpe:2.3:h:juniper:ex4300-48tafi:-:::::::* cpe:2.3:h:juniper:ex6200:-:::::::* cpe:2.3:h:juniper:srx3400:-:::::::* cpe:2.3:h:juniper:srx4100:-:::::::* cpe:2.3:o:juniper:junos:20.4:r3-s4:::::: cpe:2.3:h:juniper:srx4200:-:::::::* cpe:2.3:h:juniper:ex2300-24t:-:::::::* cpe:2.3:h:juniper:srx340:-:::::::* cpe:2.3:o:juniper:junos:20.4:r2-s2:::::: cpe:2.3:o:juniper:junos:21.3:r3-s4:::::: cpe:2.3:o:juniper:junos:21.2:r2:::::: cpe:2.3:o:juniper:junos:21.2:r2-s2::::::
References	~~(MISC) https://supportportal.juniper.net/JSA72300 -~~	(MISC) https://supportportal.juniper.net/JSA72300 - Mitigation, Vendor Advisory

17 Aug 2023, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-08-17 20:15

Updated : 2025-03-07 22:03

NVD link : CVE-2023-36845

Mitre link : CVE-2023-36845

JSON object : View

Products Affected

juniper

srx380
junos
srx1500
srx3400
srx240h2
srx300
srx220
srx4000
srx5000
srx550_hm
srx5600
srx345
srx5400
srx210
srx100
srx110
srx320
srx4600
srx550m
srx1400
srx340
srx550
srx3600
srx4100
srx4200
srx240
srx650
srx240m
srx5800

CWE

NVD-CWE-Other

9.8 /10