#VU94349 Improper physical access control in Junos OS Evolved - CVE-2024-39512

Cybersecurity Help s.r.o.

Published: 2024-07-15

Vulnerability identifier: #VU94349

Vulnerability risk: Medium

CVSSv4.0: 4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-39512

CWE-ID: CWE-1263

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Junos OS Evolved
Operating systems & Components / Operating system

Vendor: Juniper Networks, Inc.

Description

The vulnerability allows a local non-authenticated attacker to execute arbitrary code.

The vulnerability exists due to improper physical access control error in the console port control. A local non-authenticated attacker can the device to get access to a user account.

When the console cable is disconnected, the logged in user is not logged out.

This allows a malicious attacker with physical access to the console to resume a previous session and possibly gain administrative privileges.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Junos OS Evolved: 23.2R1-EVO - 23.2R2-EVO

External links
https://supportportal.juniper.net/s/article/2024-07-Security-Bulletin-Junos-OS-Evolved-User-is-not-logged-out-when-the-console-cable-is-disconnected-CVE-2024-39512

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Privilege escalation in Junos OS Evolved