CVE-2023-36844

Vulnerability updated 5 months ago (2024-05-04T17:41:46.100Z)
Download STIX
Preview STIX
CVE-2023-36844 is a medium-severity vulnerability (CVSS 5.3) in Juniper Networks' Junos OS, specifically impacting EX switches and SRX firewalls. This flaw, along with three others (CVE-2023-36845, CVE-2023-36846, CVE-2023-36847), was addressed by Juniper in mid-August. The details of these vulnerabilities have been made publicly available, raising concerns about potential exploitation. The US Cybersecurity and Infrastructure Security Agency (CISA) has urged organizations to secure their Juniper devices against these vulnerabilities, particularly as they are now being used in remote code execution (RCE) attacks as part of a pre-auth exploit chain. Threat actors have been found actively exploiting these vulnerabilities following the release of a proof-of-concept exploit. This series of vulnerabilities can be used in conjunction to create a critical threat of unauthenticated remote code execution by a network attacker. In response to this threat, Juniper fixed the bug tracked as CVE-2023-36844, along with several others (CVE-2023-36845, CVE-2023-36846, CVE-2023-36847, and CVE-2023-36851) in August. However, given the active exploitation of these vulnerabilities, organizations using Juniper devices are strongly advised to apply these patches immediately if they have not done so already.
Description last updated: 2024-05-04T16:09:49.116Z
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Juniper
Junos
Exploit
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Vulnerabilities
To see the evidence that has resulted in these vulnerability associations, create a free account
Alias DescriptionAssociation TypeVotes
The vulnerability CVE-2023-36847 is associated with CVE-2023-36844. Unspecified
3
The CVE-2023-36846 Vulnerability is associated with CVE-2023-36844. CVE-2023-36846 is a significant software vulnerability discovered in Juniper's system, identified as a pre-authentication upload vulnerability. This flaw allows for the uploading of an arbitrary PHP file to a restricted directory with a randomized file name without requiring authentication. The vulnUnspecified
2
The CVE-2023-36845 Vulnerability is associated with CVE-2023-36844. CVE-2023-36845 is a significant software vulnerability, specifically a PHP external variable modification bug, identified by WatchTowr Labs' security researchers. The flaw was part of a series of vulnerabilities linked to the SRX firewall system, including a missing authentication for critical functUnspecified
2
Source Document References
Information about the CVE-2023-36844 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
CERT-EU
9 months ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
Securityaffairs
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
Securityaffairs
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
Checkpoint
a year ago
Securityaffairs
a year ago
BankInfoSecurity
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
Securityaffairs
a year ago
CERT-EU
a year ago