CVE-2024-30407

Summary

The Use of a Hard-coded Cryptographic Key vulnerability in Juniper Networks Juniper Cloud Native Router (JCNR) and containerized routing Protocol Deamon (cRPD) products allows an attacker to perform Person-in-the-Middle (PitM) attacks which results in complete compromise of the container.

Due to hardcoded SSH host keys being present on the container, a PitM attacker can intercept SSH traffic without being detected. 

This issue affects Juniper Networks JCNR:

  • All versions before 23.4.

This issue affects Juniper Networks cRPD:

  • All versions before 23.4R1.

Affected Software

VendorProductVersion RangeStatus
Juniper Networks, Inc.cRPD0 < 23.4R1affected
Juniper Networks, Inc.Juniper Cloud Native Router (JCNR)0 < 23.4affected

Weaknesses

  • CWE-321: CWE-321 Use of Hard-coded Cryptographic Key

Workarounds

Remove the hard coded keys using:

"rm -rf /etc/ssh/ssh_host_*" and then run

"ssh-keygen -A" to generate new host keys.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References