๐Ÿ” CVE Alert

CVE-2026-33802

MEDIUM 5.5

Junos OS: EX Series: Unauthorized users can execute service-impacting CLI command

CVSS Score
5.5
EPSS Score
0.1%
EPSS Percentile
2th

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on EX Series allows a local, authenticated attacker to cause a Denial-of-Service (DoS). On EX2300, EX4000, EX4100, EX4300-MP (Multigigabit) and EX4400 switches, an authenticated, local attacker with no specific permissions or class can execute a specific, privileged CLI 'request' command which will cause complete traffic impact until the system automatically recovers. This issue affects Junos OS on EX2300, EX4000, EX4100, EX4300-MP (Multigigabit) and EX4400: * 23.2R2 versions before 23.2R2-S6, * 23.4 versions before 23.4R2-S8, * 24.2 versions before 24.2R2-S4, * 24.4 versions before 24.4R2-S3, * 25.2 versions before 25.2R2, * 25.4 versions before 25.4R1-S1.

CWE CWE-862
Vendor juniper networks
Product junos os
Published Jul 9, 2026
Last Updated Jul 10, 2026
Stay Ahead of the Next One

Get instant alerts for juniper networks junos os

Be the first to know when new medium vulnerabilities affecting juniper networks junos os are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Affected Versions

Juniper Networks / Junos OS
23.2R2 < 23.2R2-S6 23.4 < 23.4R2-S8 24.2 < 24.2R2-S4 24.4 < 24.4R2-S3 25.2 < 25.2R2 25.4 < 25.4R1-S1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
supportportal.juniper.net: https://supportportal.juniper.net/JSA110077