CISA Urges Immediate Patching for Juniper Networking Devices Amid Active Exploits
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to federal agencies to secure their Juniper devices against four vulnerabilities that are being actively exploited in remote code execution (RCE) attacks. Juniper has confirmed that the flaws in its J-Web interface have been successfully exploited in the wild. The ShadowServer threat monitoring service has already detected exploitation attempts, and over 10,000 Juniper devices with vulnerable J-Web interfaces are exposed online. Administrators are urged to upgrade JunOS or restrict Internet access to the J-Web interface. CISA has added the vulnerabilities to its Known Exploited Vulnerabilities Catalog, and federal agencies must secure their Juniper devices within the next four days.
- CISA warns of actively exploited Juniper pre-auth RCE exploit chain BleepingComputer
- CISA Sets a Deadline - Patch Juniper Junos OS Flaws Before November 17 The Hacker News
- Juniper networking devices under attack Help Net Security
- CISA adds five vulnerabilities in Juniper devices to its Known Exploited Vulnerabilities catalog Security Affairs
- View Full Coverage on Google News
Reading Insights
0
1
2 min
vs 3 min read
74%
420 → 110 words
Want the full story? Read the original article
Read on BleepingComputer