CVE-2024-39565

HIGH EPSS 40.0%

Published Jul 10, 20241y ago · Modified Jun 17, 20261w ago

7.7 CVSS 4.0

High

Published Jul 10, 2024 1y ago

Last Modified Jun 17, 2026 1w ago

Description

An Improper Neutralization of Data within XPath Expressions ('XPath Injection') vulnerability in J-Web shipped with Juniper Networks Junos OS allows an unauthenticated, network-based attacker to execute remote commands on the target device. While an administrator is logged into a J-Web session or has previously logged in and subsequently logged out of their J-Web session, the attacker can arbitrarily execute commands on the target device with the other user's credentials. In the worst case, the attacker will have full control over the device. This issue affects Junos OS: * All versions before 21.2R3-S8, * from 21.4 before 21.4R3-S7, * from 22.2 before 22.2R3-S4, * from 22.3 before 22.3R3-S3, * from 22.4 before 22.4R3-S2, * from 23.2 before 23.2R2, * from 23.4 before 23.4R1-S1, 23.4R2.

CVSS Details

Base Score

7.7

Exploitability

—

Impact

—

Vector string

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:M/U:Amber

Attack Vector Network

Attack Complexity High

Privileges Required None

User Interaction P

Scope X

Threat Intelligence

EPSS Exploit Probability

40.0% percentile

Exploit & Patch Status

No Known Exploit

Patch Available

Weaknesses 1

CWE-643

Affected Products 99

Vendor	Product	Version	Range
juniper	j-web	*	any
juniper	junos	*	<21.2
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	23.2	any
juniper	junos	23.2	any
juniper	junos	23.2	any
juniper	junos	23.2	any
juniper	junos	23.4	any
juniper	junos	23.4	any
juniper	junos	23.4	any
juniper	ex2300	*	any
juniper	ex2300-c	*	any
juniper	ex3400	*	any
juniper	ex4000	*	any
juniper	ex4100	*	any
juniper	ex4100-f	*	any
juniper	ex4100-h	*	any
juniper	ex4300	*	any
juniper	ex4400	*	any
juniper	ex4600	*	any
juniper	ex4650	*	any
juniper	ex9204	*	any
juniper	ex9208	*	any
juniper	ex9214	*	any
juniper	srx1500	*	any
juniper	srx1600	*	any
juniper	srx2300	*	any
juniper	srx300	*	any
juniper	srx320	*	any
juniper	srx340	*	any
juniper	srx345	*	any
juniper	srx380	*	any
juniper	srx4100	*	any
juniper	srx4120	*	any
juniper	srx4200	*	any
juniper	srx4300	*	any
juniper	srx4600	*	any
juniper	srx4700	*	any
juniper	srx5400	*	any
juniper	srx5600	*	any
juniper	srx5800	*	any

References 3

support.juniper.net https://support.juniper.net/support/downloads/?p=283

PatchProduct
supportportal.juniper.net https://supportportal.juniper.net/JSA83023

Vendor Advisory
first.org https://www.first.org/cvss/calculator/v4-0#CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/AU:Y/R:I/V:C/RE:L/U:Amber

Vendor Advisory

Remediation

support.juniper.net https://support.juniper.net/support/downloads/?p=283

PatchProduct