Use of Incorrectly Resolved Name Vulnerability in Juniper Networks Junos OS on MX Series
CVE-2026-57054

6.9MEDIUM

Key Information:

Status
Vendor
CVE Published:
9 July 2026

Badges

👾 Exploit Exists

What is CVE-2026-57054?

A vulnerability in the URL filtering feature of Juniper Networks' Junos OS for MX Series devices enables an unauthenticated attacker to bypass web filtering controls. By crafting a specially formatted URL, the attacker can gain access to restricted downstream resources, compromising the intended security measures of the system. This vulnerability affects multiple versions of Junos OS across various release branches, underscoring the need for timely updates to safeguard network integrity.

Affected Version(s)

Junos OS MX Series 0 < 23.2R2-S7

Junos OS MX Series 23.4 < 23.4R2-S8

Junos OS MX Series 24.2 < 24.2R2-S5

References

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.