2024-05-13 05:29:00
Juniper Networks’ Junos OS and Junos OS Evolved router operating systems include a customized version of OpenSSH. The manufacturer has now patched vulnerabilities in the software with updated operating system versions. IT managers should apply the updates promptly.
Advertisement
In one The developers of the HPE subsidiary Juniper write a security noticethat Junos OS and Junos OS Evolved use a heavily customized version of OpenSSH v7.5p1. The adjustments could allow security scanners to report false vulnerabilities in the software, and not all security holes in the version also affect Junos OS or Junos OS Evolved.
Junos OS (Evolved) with dozens of OpenSSH vulnerabilities
The security notice provides information and, if necessary, (temporary) countermeasures on a total of 19 security leaks in OpenSSH. Eight do not affect the router operating systems at all, including one of the two vulnerabilities classified as a critical risk.
The most serious vulnerability affects the PKCS#11 feature in the ssh-agent of OpenSSH (CVE-2023-38408, CVSS 9.8Risk “critical“). Attackers can potentially misuse this to inject malicious code. The Juniper developers explain that this cannot be misused directly from the user interface; admins would have to open a shell and connect to a malicious host. But older gaps, for example in scp (CVE-2020-12062, CVSS 7.5, hoch) also affect the Juniper variant.
The security vulnerabilities are patched in Junos OS 19.4R1 and Junos OS Evolved 22.3R1 or newer versions. If you are not yet able to apply the updates, you should at least consider the workarounds explained in the security notice.
In January, Juniper Networks was acquired by Hewlett Packard Enterprise (HPE). At the same time, the manufacturer had published 27 security notices and closed these numerous security gaps with the associated updates.
(dmk)
To home page
#Juniper #closes #OpenSSH #vulnerabilities #Junos #Junos #Evolved