Missing Authorization Vulnerability in Junos Space Security Director by Juniper Networks
CVE-2025-59968
7.7HIGH
What is CVE-2025-59968?
A vulnerability in Junos Space Security Director allows unauthenticated attackers to read or modify metadata through the web interface. This unauthorized access could enable malicious actors to create conditions where network traffic, normally restricted by security policies, is allowed through managed SRX Series devices. Consequently, this undermines the intended protections, exposing the network to potential threats. All versions prior to 24.1R3 Patch V4 are impacted, though managed cSRX Series devices remain unaffected. Organizations utilizing this product should assess their security posture and apply necessary updates to mitigate risks.
Affected Version(s)
Junos OS vSRX Series 0
Junos Space Security Director 0 < 24.1R3 Patch V4
Junos OS cSRX 0