Missing Authorization Vulnerability in Juniper Networks Junos OS on EX Series Switches
CVE-2026-33802

6.8MEDIUM

Key Information:

Status
Vendor
CVE Published:
9 July 2026

Badges

👾 Exploit Exists

What is CVE-2026-33802?

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS affects EX Series switches, allowing an authenticated local attacker to execute a specific privileged CLI command. This action can result in a Denial-of-Service (DoS), causing significant traffic disruption until the system self-recovers. The issue is present in multiple versions across EX2300, EX4000, EX4100, EX4300-MP, and EX4400 models, meaning that without timely updates, these devices remain at risk.

Affected Version(s)

Junos OS EX4100 23.2R2 < 23.2R2-S6

Junos OS EX4100 23.4 < 23.4R2-S8

Junos OS EX4100 24.2 < 24.2R2-S4

References

CVSS V4

Score:
6.8
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.