CVE-2020-1618 : Security Advisory and Response

On Juniper Networks EX and QFX Series, an authentication bypass vulnerability may allow a user connected to the console port to login as root without any password. Juniper SIRT has not detected any malicious exploitation of this vulnerability.

Understanding CVE-2020-1618

This CVE affects Juniper Networks Junos OS on specific versions of EX and QFX Series devices.

What is CVE-2020-1618?

An authentication bypass vulnerability on Juniper Networks EX and QFX Series allows unauthorized access during specific scenarios such as a device factory reset or software upgrade.

The Impact of CVE-2020-1618

CVSS Score: 6.3 (Medium)
Attack Complexity: High
Confidentiality Impact: High
Integrity Impact: High
Availability Impact: High
User Interaction: Required

Technical Details of CVE-2020-1618

This section covers technical specifics of the vulnerability.

Vulnerability Description

The vulnerability enables a user to access the root account via the console port without a password in certain scenarios.

Affected Systems and Versions

Platforms: EX and QFX Series
Affected Versions: Specific versions prior to 14.1X53-D53, 15.1R7-S4, 15.1X53-D593, 16.1R7-S4, 17.1R2-S11, 17.1R3-S1, 17.2R3-S3, 17.3R2-S5, 17.3R3-S6, 17.4R2-S9, 17.4R3, 18.1R3-S8, 18.2R2, 18.3R1-S7, 18.3R2

Exploitation Mechanism

The vulnerability requires physical access to the console port, and exploitation scenarios occur during specific system states.

Mitigation and Prevention

Protect your systems from this vulnerability.

Immediate Steps to Take

Implement the provided software releases solving this issue.
Restrict access to the console port only to trusted administrators.

Long-Term Security Practices

Monitor Juniper Networks' security advisories.
Conduct regular security audits and updates.

Patching and Updates

Apply software updates as recommended by Juniper Networks.