Juniper Support Portal Exposed Customer Device Info

Until earlier this week, the support website for networking equipment vendor Juniper Networks was exposing potentially sensitive information tied to customer products, including the exact devices each customer bought, as well as each device’s warranty status, service contracts and serial numbers. Juniper said it has since fixed the problem, and that the inadvertent data exposure stemmed from a recent upgrade to its support portal. Continue reading Juniper Support Portal Exposed Customer Device Info

Juniper fixes critical RCE in its SRX firewalls and EX switches (CVE-2024-21591)

Juniper Networks has fixed a critical pre-authentication remote code execution (RCE) vulnerability (CVE-2024-21591) in Junos OS on SRX firewalls and EX switches. About CVE-2024-21591 CVE-2024-21591 is an out-of-bounds write vulnerability that could all… Continue reading Juniper fixes critical RCE in its SRX firewalls and EX switches (CVE-2024-21591)

Juniper networking devices under attack

CISA has ordered US federal agencies to patch five vulnerabilities used by attackers to compromise Juniper networking devices, and to do so by Friday. Most of these bugs are not particularly severe by themselves, but they can be – and have been &… Continue reading Juniper networking devices under attack

Juniper Networks enhances Connected Security portfolio with new products and capabilities

Juniper Networks announced the expansion of its Connected Security portfolio with new products and capabilities that empower organizations to seamlessly extend security services and zero trust policies across distributed data center environments. The n… Continue reading Juniper Networks enhances Connected Security portfolio with new products and capabilities

Juniper Apstra enhancements simplify and standardize data center architectures

Juniper Networks announced new Juniper Apstra capabilities that enhance operator experiences to facilitate the deployment and operations of private data center infrastructures. With the introduction of new experience-first data center features, includi… Continue reading Juniper Apstra enhancements simplify and standardize data center architectures

PoC for no-auth RCE on Juniper firewalls released

Researchers have released additional details about the recently patched four vulnerabilities affecting Juniper Networks’ SRX firewalls and EX switches that could allow remote code execution (RCE), as well as a proof-of-concept (PoC) exploit. Juno… Continue reading PoC for no-auth RCE on Juniper firewalls released

Juniper Networks fixes flaws leading to RCE in firewalls and switches

Juniper Networks has fixed four vulnerabilities (CVE-2023-36844, CVE-2023-36845, CVE-2023-36846, CVE-2023-36847) in Junos OS that, if chained together, could allow attackers to achieve remote code execution (RCE) on the company’s SRX firewalls an… Continue reading Juniper Networks fixes flaws leading to RCE in firewalls and switches

Juniper Networks and ServiceNow partner to deliver E2E automation for MSPs and enterprises

Juniper Networks and ServiceNow have formed a partnership to deliver end-to-end automation for managed service providers and enterprises. With this newly formed collaboration leveraging Juniper Mist Cloud and ServiceNow Telecom Service Management and O… Continue reading Juniper Networks and ServiceNow partner to deliver E2E automation for MSPs and enterprises