Privilege Escalation Risk in Junos OS from Juniper Networks
CVE-2026-21916

7HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Os
Vendor: CVE Published:; 9 April 2026

🔔 Create Juniper Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2026-21916?

A Symlink Following vulnerability in the command-line interface (CLI) of Junos OS from Juniper Networks permits a local, authenticated attacker to escalate privileges. Following a specific CLI operation involving 'file link ...', the attacker can exploit this flaw to gain root access, potentially compromising the entire system. This vulnerability affects several versions of Junos OS, emphasizing the importance of updating to the latest versions to mitigate risks associated with unauthorized access.

Affected Version(s)

Junos OS 0 < 23.2R2-S7

Junos OS 23.4 < 23.4R2-S6

Junos OS 24.2 < 24.2R2-S3

References

https://kb.juniper.net/JSA107807

vendor-advisory

CVSS V4

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Apr 9, 2026
Vulnerability published
Apr 9, 2026
Vulnerability Reserved
Jan 5, 2026

CVE-2026-21916 Data

JSON