Use of Incorrectly-Resolved Name or Reference in Junos OS - CVE-2026-57054
Published: July 8, 2026
Junos OS
Detailed vulnerability description
The vulnerability allows a remote attacker to bypass web filtering and access downstream resources that should be unreachable.
The vulnerability exists due to use of incorrectly-resolved name or reference in the URL filtering plugin when processing specifically formatted URLs. A remote attacker can send a request with a specifically formatted URL to bypass web filtering and access downstream resources that should be unreachable.
Only MX Series devices configured with web filtering for specific URLs are exposed.