政府電腦保安事故協調中心 - 高危保安警報 (A26-01-26): Juniper Networks 產品多個漏洞

描述:

Juniper Networks 發布了安全公告，以應對 Juniper Session Smart Route 的多個漏洞。有關漏洞的詳細資料，請參閱供應商網站的相應安全公告。

有報告指遠端執行程式碼漏洞 (CVE-2025-27363) 正受到攻擊及概念驗證 (PoC) 程式碼的多個漏洞已被公開。系統管理員應立即為受影響的系統安裝修補程式，以減低受到網絡攻擊的風險。

受影響的系統:

Juniper Networks Session Smart Router

有關受影響系統的詳細資料，請參閱供應商網站的相應安全公告。

影響:

成功利用漏洞可以導致受影響的系統發生遠端執行程式碼、服務被拒絕、權限提升、泄漏資訊、繞過保安限制、仿冒詐騙或篡改。

建議:

現已有適用於受影響系統的修補程式。受影響系統的系統管理員應遵從供應商的建議，立即採取行動以降低風險。

進一步資訊:

https://supportportal.juniper.net/s/article/On-Demand-Security-Bulletin-Multiple-vulnerabilities-resolved-in-Session-Smart-Router-6-2-10-lts-6-3-7-sts
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9840
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10009
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9047
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12321
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22218
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26341
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33655 (to CVE-2021-33656)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43975
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46939
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47018
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47257
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47284
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47304
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47373
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47408
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47461
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47468
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47491
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47548
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47579
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47624
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0934
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1304
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1462
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1679
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1789
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2196
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2601
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2663
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3028
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3239
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3524
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3564
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3566 (to CVE-2022-3567)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3594
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3619
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3623
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3625
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3628
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3640
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3707
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4129
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4744
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-20141
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25265
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28388
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30594
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37434
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38023
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38457
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39188 (to CVE-2022-39189)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40133
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40982
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41218
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41674
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41741 (to CVE-2022-41742)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41973 (to CVE-2022-41974)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42703
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42720 (to CVE-2022-42722)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42895 (to CVE-2022-42896)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43552
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43750
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45869
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45884
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45886 (to CVE-2022-45887)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45919
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47929
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48632
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48743
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48747
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48757
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-49011
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0286
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0394
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0458
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0461
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0590
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0597
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0767
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1073 (to CVE-2023-1075)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1079
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1118
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1192
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1195
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1206
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1252
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1281
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1382
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1582
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1829
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1855
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1989
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1998
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2124
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2163
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2176
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2194
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2235
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2513
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2650
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2828
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3141
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3161
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3212
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3268
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3341
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3446
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3609
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3611
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3772
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3812
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3817
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4132
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4155
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4206 (to CVE-2023-4208)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4408
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4623
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4732
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5178
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5678
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20569
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20593
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21930
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21937 (to CVE-2023-21939)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21954
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-21967 (to CVE-2023-21968)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22045
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22049
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22081
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23454 (to CVE-2023-23455)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23918
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23920
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24329
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25012
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26545
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26604
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26916
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28328
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28746
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28772
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30456
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31084
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31436
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32067
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32360
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33203
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33951 (to CVE-2023-33952)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-35823 (to CVE-2023-35824)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38408
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-38802
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40217
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40283
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46724
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46728
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46846 (to CVE-2023-46847)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48161
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48795
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49285 (to CVE-2023-49286)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50269
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50387
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50868
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52451
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52658
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52662
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52679
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52707
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52730
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52762
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52764
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52775
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52777
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52784
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52791
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52796
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52803
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52811
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52832
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52834
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52845
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0727
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1737
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1975
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2961
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3596
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3651
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5535
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5564
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6232
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7347
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9143
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11187
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-12085
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-13176
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20918 (to CVE-2024-20919)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20921
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20926
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20945
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21011 (to CVE-2024-21012)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21068
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21085
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21094
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21131
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21138
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21140
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21144 (to CVE-2024-21145)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21147
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21208
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21210
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21217
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21235
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22019
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22232
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24806
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25617
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-32487
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33599 (to CVE-2024-33602)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35893
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35896 (to CVE-2024-35897)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35899 (to CVE-2024-35900)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35910
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37370 (to CVE-2024-37371)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38822 (to CVE-2024-38825)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-40906
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-43842
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-44970
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45802
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53141
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-55549
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56171
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56326
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0624
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-21587
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-21756
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-22236 (to CVE-2025-22242)
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23419
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24855
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-24928
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27363
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-29087
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30691
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30698
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30749

標籤 : Juniper Networks Session Smart Router