CVE-2024-39522

An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of the system.

The Junos OS Evolved CLI doesn't properly handle command options in some cases, allowing users which execute specific CLI commands with a crafted set of parameters to escalate their privileges to root on shell level.

This issue affects Junos OS Evolved:

22.3-EVO versions before 22.3R2-EVO,
22.4-EVO versions before 22.4R1-S1-EVO, 22.4R2-EVO.

Published: Jul 11, 2024
Updated: Jul 12, 2024
CVE: CVE-2024-39522
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-78

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
juniper / junos_os_evolved	22.3-r1	22.3-r1.x
juniper / junos_os_evolved	22.3-r1-s1	22.3-r1-s1.x
juniper / junos_os_evolved	22.3-r1-s2	22.3-r1-s2.x
juniper / junos_os_evolved	22.4-r1	22.4-r1.x
juniper / junos_os_evolved	22.4	22.4.x
juniper / junos_os_evolved	22.3	22.3.x

https://supportportal.juniper.net/JSA82975

Vulnerability Database

289,697

CVE-2024-39522