CVE-2023-28966 HIGH

CVE-2023-28966: Junos OS Evolved: Local low-privileged user with shell access can execute CLI commands as root

Vendor Juniper Networks
Product Junos OS Evolved
Weakness CWE-276
Published April 17, 2023
Last update February 6, 2025

CVSS base score

7.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS Evolved allows a low-privileged local attacker with shell access to modify existing files or execute commands as root. The issue is caused by improper file and directory permissions on certain system files, allowing an attacker with access to these files and folders to inject CLI commands as root. This issue affects Juniper Networks Junos OS Evolved: All versions prior to 20.4R3-S5-EVO; 21.2 versions prior to 21.2R3-EVO; 21.3 versions prior to 21.3R2-EVO.

Key dates

02Disclosure timeline

April 17, 2023 CVE published
February 6, 2025 Record updated