CVE-2022-22245
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Summary
A Path Traversal vulnerability in the J-Web component of Juniper Networks Junos OS allows an authenticated attacker to upload arbitrary files to the device by bypassing validation checks built into Junos OS. The attacker should not be able to execute the file due to validation checks built into Junos OS. Successful exploitation of this vulnerability could lead to loss of filesystem integrity. This issue affects Juniper Networks Junos OS: all versions prior to 19.1R3-S9; 19.2 versions prior to 19.2R3-S6; 19.3 versions prior to 19.3R3-S7; 19.4 versions prior to 19.4R3-S9; 20.1 versions prior to 20.1R3-S5; 20.2 versions prior to 20.2R3-S5; 20.3 versions prior to 20.3R3-S5; 20.4 versions prior to 20.4R3-S4; 21.1 versions prior to 21.1R3-S2; 21.2 versions prior to 21.2R3-S1; 21.3 versions prior to 21.3R2-S2, 21.3R3; 21.4 versions prior to 21.4R1-S2, 21.4R2-S1, 21.4R3; 22.1 versions prior to 22.1R1-S1, 22.1R2.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Juniper Networks | Junos OS | unspecified < 19.1R3-S9 | affected |
| Juniper Networks | Junos OS | 19.2 < 19.2R3-S6 | affected |
| Juniper Networks | Junos OS | 19.3 < 19.3R3-S7 | affected |
| Juniper Networks | Junos OS | 19.4 < 19.4R3-S9 | affected |
| Juniper Networks | Junos OS | 20.1 < 20.1R3-S5 | affected |
| Juniper Networks | Junos OS | 20.2 < 20.2R3-S5 | affected |
| Juniper Networks | Junos OS | 20.3 < 20.3R3-S5 | affected |
| Juniper Networks | Junos OS | 20.4 < 20.4R3-S4 | affected |
| Juniper Networks | Junos OS | 21.1 < 21.1R3-S2 | affected |
| Juniper Networks | Junos OS | 21.2 < 21.2R3-S1 | affected |
| Juniper Networks | Junos OS | 21.3 < 21.3R2-S2, 21.3R3 | affected |
| Juniper Networks | Junos OS | 21.4 < 21.4R1-S2, 21.4R2-S1, 21.4R3 | affected |
| Juniper Networks | Junos OS | 22.1 < 22.1R1-S1, 22.1R2 | affected |
Weaknesses
- CWE-23: CWE-23 Relative Path Traversal
Workarounds
Disable J-Web, or limit access to only trusted hosts.
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.