🗓️ Sign up for the 2025 runZero Hour webcast series and never miss a new episode! Register Now

On This Page:

  1. Latest Juniper Networks vulnerability
  2. Are updates or workarounds available?
  3. How do I find potentially vulnerable systems with runZero?
  4. January 2024: Juniper SRX firewalls and EX switches

How to find Juniper Session Smart Router instances on your network

runZero Team
|
Updated

Latest Juniper Networks vulnerability #

Juniper Networks disclosed a vulnerability in their Session Smart Router and Conductor software, previously known as 128T Networking Platform.

The issue, identified as CVE-2025-21589, could allow remote attackers to bypass authentication and take administrative control of a vulnerable system.

This vulnerability has a CVSS score of 9.8 out of 10, indicating that this is a critical vulnerability. According to the security bulletin, Juniper Networks is not aware of any active exploitation of this vulnerability.

The affected versions are:

  • 5.6.7 up to 5.6.17 
  • 6.0.8
  • 6.1 up to 6.1.12-lts
  • 6.2 up to 6.2.8-lts
  • 6.3 up to 6.3.3-r2

Are updates or workarounds available? #

Juniper has released a software update to address this vulnerability. This update available through their support portal and other update distribution mechanisms. In Conductor-managed deployments, updating the Conductor nodes is sufficient. The patch will be applied to all connected routers.

How do I find potentially vulnerable systems with runZero? #

From the Service Inventory, use the following query to locate assets that may be running the vulnerable operating system in your network:

_asset.protocol:http protocol:http _service.last.html.title:="128T Networking Platform"

January 2024: Juniper SRX firewalls and EX switches #

On January 12th, 2024, Juniper Networks disclosed a serious vulnerability in Juniper SRX firewalls and EX switches.

The issue, identified as CVE-2024-21591, allowed remote attackers to create a denial-of-service (DoS) condition or to execute arbitrary code with root privileges on vulnerable devices.

This vulnerability has a CVSS score of 9.8 out of 10, indicating this as a critical vulnerability. According to their disclosure, Juniper Networks was not aware of any active exploitation of this vulnerability.

What was the impact? #

Upon successful exploitation of these vulnerabilities, attackers could execute arbitrary code on the vulnerable system with root privileges. In general, this meant that a successful attack would result in complete system compromise.

Were updates or workarounds available? #

Juniper released a software update to address this vulnerability. This update was available through their support portal and other update distribution mechanisms.

How to find Juniper SRX firewalls and EX switches with runZero #

From the Asset Inventory, use the following query to locate assets that may be running the vulnerable operating system in your network:

hw:"Juniper EX" OR hw:"Juniper SRX"

Written by runZero Team

Due to the nature of their research and out of respect for their privacy, runZero team members prefer to remain anonymous. Their work is published under the runZero name.

More about runZero Team
Subscribe Now

Get the latest news and expert insights delivered in your inbox.

Welcome to the club! Your subscription to our newsletter is successful.

Explore more

Webcasts
The Unreasonable Effectiveness of Inside Out Attack Surface Management
HD Moore, founder of runZero (and previously Metasploit), presents new research that will forever redefine how you approach attack surface...
Watch Now
Webcasts
Safeguarding OT/ICS Assets: Insights from the U.S. Department of Energy
Security experts from the National Renewable Energy Lab’s (NREL) Clean Energy Cybersecurity Accelerator™ (CECA) program join runZero to discuss...
Watch Now
runZero Insights
Ensure compliance with DORA’s ICT risk framework using runZero
Learn how to uncover unmanaged and unknown assets— including IT, OT, and IoT— to meet DORA's hidden risk requirements using runZero.
Read More
Talks
DEF CON 32: SSHamble: Unexpected Exposures in SSH (Video)
This talk digs deep into SSH, the lesser-known implementations, many of the surprising security issues found along the way, and how to exploit them.
Watch Now

See Results in Minutes

Get complete visibility into IT, OT, & IoT — without agents, credentials, or hardware.

Try It Free
icon-bluesky
© Copyright 2025 runZero, Inc. All Rights Reserved