CVE-2023-36846

Vulnerability updated 7 days ago (2024-11-29T13:37:17.277Z)
Download STIX
Preview STIX
CVE-2023-36846 is a significant software vulnerability discovered in Juniper's system, identified as a pre-authentication upload vulnerability. This flaw allows for the uploading of an arbitrary PHP file to a restricted directory with a randomized file name without requiring authentication. The vulnerability was exploited by security researchers at watchTowr Labs, who used it to compromise the system and highlight the potential risks associated with this flaw. The researchers focused on two specific vulnerabilities in Juniper during their investigation: CVE-2023-36846 and CVE-2023-36845. Both vulnerabilities were outlined in Juniper's security advisory, indicating the company's awareness of these flaws. CVE-2023-36846, in particular, posed a serious threat due to its ability to bypass standard authentication protocols, thereby enabling unauthorized access and potential system compromise. Following the discovery and exploitation of the vulnerabilities, watchTowr Labs developed and released a proof-of-concept (PoC) exploit that chains the SRX firewall flaws together. The PoC exploit, available at https://github.com/watchtowrlabs/juniper-rce_cve-2023-36844, demonstrates how the missing authentication for critical function vulnerability (CVE-2023-36846) and a PHP external variable modification bug (CVE-2023-36845) can be exploited in conjunction. This release underscores the severity of these vulnerabilities and emphasizes the urgent need for remediation measures.
Description last updated: 2024-05-04T18:30:05.677Z
What's your take? (Question 1 of 4)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Juniper
Exploit
Vulnerability
Junos
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Vulnerabilities
To see the evidence that has resulted in these vulnerability associations, create a free account
Alias DescriptionAssociation TypeVotes
The CVE-2023-36844 Vulnerability is associated with CVE-2023-36846. CVE-2023-36844 is a medium-severity vulnerability (CVSS 5.3) in Juniper Networks' Junos OS, specifically impacting EX switches and SRX firewalls. This flaw, along with three others (CVE-2023-36845, CVE-2023-36846, CVE-2023-36847), was addressed by Juniper in mid-August. The details of these vulnerabUnspecified
2
Source Document References
Information about the CVE-2023-36846 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
CISA
21 days ago
Securityaffairs
10 months ago
CERT-EU
a year ago
CERT-EU
a year ago
Securityaffairs
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
Securityaffairs
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
BankInfoSecurity
a year ago
CERT-EU
a year ago
CERT-EU
a year ago
Securityaffairs
a year ago
CERT-EU
a year ago
Securityaffairs
a year ago
CERT-EU
a year ago