{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33776", "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "state": "PUBLISHED", "assignerShortName": "juniper", "dateReserved": "2026-03-23T19:46:13.669Z", "datePublished": "2026-04-09T21:34:50.469Z", "dateUpdated": "2026-04-10T14:13:45.754Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Junos OS", "vendor": "Juniper Networks", "versions": [{"lessThan": "22.4R3-S8", "status": "affected", "version": "0", "versionType": "semver"}, {"lessThan": "23.2R2-S6", "status": "affected", "version": "23.2", "versionType": "semver"}, {"lessThan": "23.4R2-S6", "status": "affected", "version": "23.4", "versionType": "semver"}, {"lessThan": "24.2R2-S4", "status": "affected", "version": "24.2", "versionType": "semver"}, {"lessThan": "24.4R2-S1", "status": "affected", "version": "24.4", "versionType": "semver"}, {"lessThan": "25.2R1-S2, 25.2R2", "status": "affected", "version": "25.2", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "Junos OS Evolved", "vendor": "Juniper Networks", "versions": [{"lessThan": "23.2R2-S6-EVO", "status": "affected", "version": "0", "versionType": "semver"}, {"lessThan": "23.4R2-S6-EVO", "status": "affected", "version": "23.4", "versionType": "semver"}, {"lessThan": "24.2R2-S4-EVO", "status": "affected", "version": "24.2", "versionType": "semver"}, {"lessThan": "24.4R2-S1-EVO", "status": "affected", "version": "24.4", "versionType": "semver"}, {"lessThan": "25.2R2-EVO", "status": "affected", "version": "25.2", "versionType": "semver"}]}], "datePublic": "2026-04-08T16:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information.<br><br>A local user with low privileges can execute the CLI command 'show mgd' with specific arguments which will expose sensitive information.<br><br>This issue affects<br><br>Junos OS:<br><ul><li>all versions before 22.4R3-S8,</li><li>23.2 versions before 23.2R2-S6,</li><li>23.4 versions before 23.4R2-S6,</li><li>24.2 versions before 24.2R2-S4,</li><li>24.4 versions before 24.4R2-S1,</li><li>25.2 version before 25.2R1-S2, 25.2R2;</li></ul><br>Junos OS Evolved:<br><ul><li>all versions before 23.2R2-S6-EVO,</li><li>23.4 version before 23.4R2-S6-EVO,</li><li>24.2 version before 24.2R2-S4-EVO,</li><li>24.4 versions before 24.4R2-S1-EVO,</li><li>25.2 versions before 25.2R2-EVO.</li></ul><br>"}], "value": "A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information.\n\nA local user with low privileges can execute the CLI command 'show mgd' with specific arguments which will expose sensitive information.\n\nThis issue affects\n\nJunos OS:\n * all versions before 22.4R3-S8,\n * 23.2 versions before 23.2R2-S6,\n * 23.4 versions before 23.4R2-S6,\n * 24.2 versions before 24.2R2-S4,\n * 24.4 versions before 24.4R2-S1,\n * 25.2 version before 25.2R1-S2, 25.2R2;\n\n\n\nJunos OS Evolved:\n * all versions before 23.2R2-S6-EVO,\n * 23.4 version before 23.4R2-S6-EVO,\n * 24.2 version before 24.2R2-S4-EVO,\n * 24.4 versions before 24.4R2-S1-EVO,\n * 25.2 versions before 25.2R2-EVO."}], "exploits": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"cvssV4_0": {"Automatable": "YES", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 6.8, "baseSeverity": "MEDIUM", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/AU:Y/RE:M", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "MODERATE"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-862", "description": "CWE-862 Missing Authorization", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "shortName": "juniper", "dateUpdated": "2026-04-09T21:34:50.469Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://kb.juniper.net/JSA107866"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "The following software releases have been updated to resolve this specific issue:<br>Junos OS Evolved: 23.2R2-S6-EVO, 23.4R2-S6-EVO, 2<span style=\"background-color: rgb(255, 255, 255);\">4.2R2-S4-EVO, 2</span>4.4R2-S1-EVO, 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases;<br>Junos OS: 22.4R3-S8, 23.2R2-S6, 23.4R2-S6, 24.2R2-S4, 24.4R2-S1, 25.2R1-S2, 25.2R2, 25.4R1, and all subsequent releases."}], "value": "The following software releases have been updated to resolve this specific issue:\nJunos OS Evolved: 23.2R2-S6-EVO, 23.4R2-S6-EVO, 24.2R2-S4-EVO, 24.4R2-S1-EVO, 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases;\nJunos OS: 22.4R3-S8, 23.2R2-S6, 23.4R2-S6, 24.2R2-S4, 24.4R2-S1, 25.2R1-S2, 25.2R2, 25.4R1, and all subsequent releases."}], "source": {"advisory": "JSA107866", "defect": ["1704886"], "discovery": "EXTERNAL"}, "title": "Junos OS and Junos OS Evolved: Specific low privileged CLI command exposes sensitive information", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Use access lists or firewall filters to limit access to the CLI only from trusted hosts and administrators.<br><br><span style=\"background-color: rgb(255, 255, 255);\">Utilize CLI authorization to disallow execution of the '</span><span style=\"background-color: rgb(255, 255, 255);\">show mgd'</span><span style=\"background-color: rgb(255, 255, 255);\">&nbsp;commands.</span>\n\n<br>\n\n<br>"}], "value": "Use access lists or firewall filters to limit access to the CLI only from trusted hosts and administrators.\n\nUtilize CLI authorization to disallow execution of the 'show mgd'\u00a0commands."}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-10T14:12:01.071120Z", "id": "CVE-2026-33776", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-10T14:13:45.754Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-33776", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-10T14:12:01.071120Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-10T14:13:40.767Z"}}], "cna": {"title": "Junos OS and Junos OS Evolved: Specific low privileged CLI command exposes sensitive information", "source": {"defect": ["1704886"], "advisory": "JSA107866", "discovery": "EXTERNAL"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 6.8, "Automatable": "YES", "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/AU:Y/RE:M", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "MODERATE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Juniper Networks", "product": "Junos OS", "versions": [{"status": "affected", "version": "0", "lessThan": "22.4R3-S8", "versionType": "semver"}, {"status": "affected", "version": "23.2", "lessThan": "23.2R2-S6", "versionType": "semver"}, {"status": "affected", "version": "23.4", "lessThan": "23.4R2-S6", "versionType": "semver"}, {"status": "affected", "version": "24.2", "lessThan": "24.2R2-S4", "versionType": "semver"}, {"status": "affected", "version": "24.4", "lessThan": "24.4R2-S1", "versionType": "semver"}, {"status": "affected", "version": "25.2", "lessThan": "25.2R1-S2, 25.2R2", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Juniper Networks", "product": "Junos OS Evolved", "versions": [{"status": "affected", "version": "0", "lessThan": "23.2R2-S6-EVO", "versionType": "semver"}, {"status": "affected", "version": "23.4", "lessThan": "23.4R2-S6-EVO", "versionType": "semver"}, {"status": "affected", "version": "24.2", "lessThan": "24.2R2-S4-EVO", "versionType": "semver"}, {"status": "affected", "version": "24.4", "lessThan": "24.4R2-S1-EVO", "versionType": "semver"}, {"status": "affected", "version": "25.2", "lessThan": "25.2R2-EVO", "versionType": "semver"}], "defaultStatus": "unaffected"}], "exploits": [{"lang": "en", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability.", "supportingMedia": [{"type": "text/html", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability.", "base64": false}]}], "solutions": [{"lang": "en", "value": "The following software releases have been updated to resolve this specific issue:\nJunos OS Evolved: 23.2R2-S6-EVO, 23.4R2-S6-EVO, 24.2R2-S4-EVO, 24.4R2-S1-EVO, 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases;\nJunos OS: 22.4R3-S8, 23.2R2-S6, 23.4R2-S6, 24.2R2-S4, 24.4R2-S1, 25.2R1-S2, 25.2R2, 25.4R1, and all subsequent releases.", "supportingMedia": [{"type": "text/html", "value": "The following software releases have been updated to resolve this specific issue:<br>Junos OS Evolved: 23.2R2-S6-EVO, 23.4R2-S6-EVO, 2<span style=\"background-color: rgb(255, 255, 255);\">4.2R2-S4-EVO, 2</span>4.4R2-S1-EVO, 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases;<br>Junos OS: 22.4R3-S8, 23.2R2-S6, 23.4R2-S6, 24.2R2-S4, 24.4R2-S1, 25.2R1-S2, 25.2R2, 25.4R1, and all subsequent releases.", "base64": false}]}], "datePublic": "2026-04-08T16:00:00.000Z", "references": [{"url": "https://kb.juniper.net/JSA107866", "tags": ["vendor-advisory"]}], "workarounds": [{"lang": "en", "value": "Use access lists or firewall filters to limit access to the CLI only from trusted hosts and administrators.\n\nUtilize CLI authorization to disallow execution of the 'show mgd'\u00a0commands.", "supportingMedia": [{"type": "text/html", "value": "Use access lists or firewall filters to limit access to the CLI only from trusted hosts and administrators.<br><br><span style=\"background-color: rgb(255, 255, 255);\">Utilize CLI authorization to disallow execution of the '</span><span style=\"background-color: rgb(255, 255, 255);\">show mgd'</span><span style=\"background-color: rgb(255, 255, 255);\">&nbsp;commands.</span>\n\n<br>\n\n<br>", "base64": false}]}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information.\n\nA local user with low privileges can execute the CLI command 'show mgd' with specific arguments which will expose sensitive information.\n\nThis issue affects\n\nJunos OS:\n * all versions before 22.4R3-S8,\n * 23.2 versions before 23.2R2-S6,\n * 23.4 versions before 23.4R2-S6,\n * 24.2 versions before 24.2R2-S4,\n * 24.4 versions before 24.4R2-S1,\n * 25.2 version before 25.2R1-S2, 25.2R2;\n\n\n\nJunos OS Evolved:\n * all versions before 23.2R2-S6-EVO,\n * 23.4 version before 23.4R2-S6-EVO,\n * 24.2 version before 24.2R2-S4-EVO,\n * 24.4 versions before 24.4R2-S1-EVO,\n * 25.2 versions before 25.2R2-EVO.", "supportingMedia": [{"type": "text/html", "value": "A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information.<br><br>A local user with low privileges can execute the CLI command 'show mgd' with specific arguments which will expose sensitive information.<br><br>This issue affects<br><br>Junos OS:<br><ul><li>all versions before 22.4R3-S8,</li><li>23.2 versions before 23.2R2-S6,</li><li>23.4 versions before 23.4R2-S6,</li><li>24.2 versions before 24.2R2-S4,</li><li>24.4 versions before 24.4R2-S1,</li><li>25.2 version before 25.2R1-S2, 25.2R2;</li></ul><br>Junos OS Evolved:<br><ul><li>all versions before 23.2R2-S6-EVO,</li><li>23.4 version before 23.4R2-S6-EVO,</li><li>24.2 version before 24.2R2-S4-EVO,</li><li>24.4 versions before 24.4R2-S1-EVO,</li><li>25.2 versions before 25.2R2-EVO.</li></ul><br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "shortName": "juniper", "dateUpdated": "2026-04-09T21:34:50.469Z"}}}, "cveMetadata": {"cveId": "CVE-2026-33776", "state": "PUBLISHED", "dateUpdated": "2026-04-10T14:13:45.754Z", "dateReserved": "2026-03-23T19:46:13.669Z", "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "datePublished": "2026-04-09T21:34:50.469Z", "assignerShortName": "juniper"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information.\n\nA local user with low privileges can execute the CLI command 'show mgd' with specific arguments which will expose sensitive information.\n\nThis issue affects\n\nJunos OS:\n * all versions before 22.4R3-S8,\n * 23.2 versions before 23.2R2-S6,\n * 23.4 versions before 23.4R2-S6,\n * 24.2 versions before 24.2R2-S4,\n * 24.4 versions before 24.4R2-S1,\n * 25.2 version before 25.2R1-S2, 25.2R2;\n\n\n\nJunos OS Evolved:\n * all versions before 23.2R2-S6-EVO,\n * 23.4 version before 23.4R2-S6-EVO,\n * 24.2 version before 24.2R2-S4-EVO,\n * 24.4 versions before 24.4R2-S1-EVO,\n * 25.2 versions before 25.2R2-EVO."}], "id": "CVE-2026-33776", "lastModified": "2026-04-09T22:16:26.267", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "sirt@juniper.net", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "YES", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:X/RE:M/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "MODERATE"}, "source": "sirt@juniper.net", "type": "Secondary"}]}, "published": "2026-04-09T22:16:26.267", "references": [{"source": "sirt@juniper.net", "url": "https://kb.juniper.net/JSA107866"}], "sourceIdentifier": "sirt@juniper.net", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "sirt@juniper.net", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,22.4R3-S8)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[23.2,23.2R2-S6)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[23.4,23.4R2-S6)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[24.2,24.2R2-S4)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[24.4,24.4R2-S1)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[25.2,25.2R1-S2, 25.2R2)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Junos OS", "source": "cna", "vendor": "Juniper Networks"}, "product": "junos_os", "vendor": "juniper_networks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,23.2R2-S6-EVO)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[23.4,23.4R2-S6-EVO)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[24.2,24.2R2-S4-EVO)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[24.4,24.4R2-S1-EVO)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[25.2,25.2R2-EVO)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Junos OS Evolved", "source": "cna", "vendor": "Juniper Networks"}, "product": "junos_os_evolved", "vendor": "juniper_networks"}], "analysis": {"en": {"generated_at": "2026-04-09T23:26:28.688567+00:00", "value": {"mitigation_remediation": ["Apply the vendor-supplied patch by upgrading to a fixed release listed in the advisory (e.g., Junos OS 22.4R3-S8 or newer).", "If an immediate upgrade is not possible, restrict CLI access to trusted hosts and administrators using access lists or firewall filters.", "Configure CLI authorization rules to block execution of the 'show mgd' commands for low-privileged users."], "summary": {"action": "Patch Now", "impact": "Information Disclosure through low-privilege CLI execution"}, "threat_synthesis": {"affected_systems": "Systems running Junos OS versions older than 22.4R3-S8, all pre-23.2R2-S6 releases, pre-23.4R2-S6, pre-24.2R2-S4, pre-24.4R2-S1, and early 25.2 (before 25.2R1-S2 and 25.2R2) are impacted. Similarly, Junos OS Evolved versions older than 23.2R2-S6-EVO, 23.4R2-S6-EVO, 24.2R2-S4-EVO, 24.4R2-S1-EVO, and 25.2R2-EVO are vulnerable. All newer releases listed in the vendor\u2019s advisory contain the patch and are not affected.", "description_and_impact": "A local user with low privileges can run the CLI command 'show mgd' against Juniper Networks Junos OS or Junos OS Evolved, bypassing required authorization checks. This missing authorization flaw allows the extraction of sensitive configuration data and operational information that should only be accessible to privileged accounts. The vulnerability is classified as Information Disclosure due to CWE-862, which identifies missing authorization.", "risk_and_exploitability": "The CVSS base score of 6.8 indicates a medium severity, and the absence of an EPSS score or KEV listing suggests limited current exploitation activity. Exploitation requires the attacker already have local CLI or SSH access with a low-privileged account, which is typical for administrators or service accounts, potentially allowing an insider or compromised credential holder to read confidential data. Administrators should treat this flaw as a moderate to high risk depending on the sensitivity of stored information and apply the recommended patches promptly."}}}}, "created": "2026-04-10T08:36:57.304545+00:00", "updated": "2026-04-10T09:27:54.975154+00:00", "vendors": ["juniper_networks", "juniper_networks$PRODUCT$junos_os", "juniper_networks$PRODUCT$junos_os_evolved"]}