Security hole could let hackers take over Juniper Networks PTX core routers
Summary
A critical vulnerability in Juniper Networks PTX series routers running Junos OS Evolved could allow an unauthenticated attacker to execute code with root privileges. The vulnerability, which lies in the On-Box Anomaly detection framework, affects versions earlier than 25.4R1-S1-EVO and 25.4R2-EVO, but not the standard Junos OS.
IFF Assessment
A critical vulnerability in widely deployed routers could allow complete device takeover.
Severity
Defender Context
This vulnerability allows for complete remote takeover of the router, which could lead to traffic interception, redirection, or pivots into adjacent networks. Network administrators should immediately patch their Juniper PTX series routers running Junos OS Evolved to versions 25.4R1-S1-EVO or 25.4R2-EVO or later. Pay close attention to internal product security testing, especially involving default configurations, as this is where the vulnerability was found.