An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS allows an unauthenticated attacker with local access to the device to create a backdoor with root privileges. The issue is caused by improper directory permissions on a certain system directory, allowing an attacker with access to this directory to create a backdoor with root privileges.
This issue affects Juniper Networks Junos OS:
During installation, installed file permissions are set to allow anyone to modify those files.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Junos | Juniper | * | 20.4 (excluding) |
| Junos | Juniper | 20.4 (including) | 20.4 (including) |
| Junos | Juniper | 20.4-r1 (including) | 20.4-r1 (including) |
| Junos | Juniper | 20.4-r1-s1 (including) | 20.4-r1-s1 (including) |
| Junos | Juniper | 20.4-r2 (including) | 20.4-r2 (including) |
| Junos | Juniper | 20.4-r2-s1 (including) | 20.4-r2-s1 (including) |
| Junos | Juniper | 20.4-r2-s2 (including) | 20.4-r2-s2 (including) |
| Junos | Juniper | 20.4-r3 (including) | 20.4-r3 (including) |
| Junos | Juniper | 20.4-r3-s1 (including) | 20.4-r3-s1 (including) |
| Junos | Juniper | 20.4-r3-s2 (including) | 20.4-r3-s2 (including) |
| Junos | Juniper | 20.4-r3-s3 (including) | 20.4-r3-s3 (including) |
| Junos | Juniper | 20.4-r3-s4 (including) | 20.4-r3-s4 (including) |
| Junos | Juniper | 21.1 (including) | 21.1 (including) |
| Junos | Juniper | 21.1-r1 (including) | 21.1-r1 (including) |
| Junos | Juniper | 21.1-r1-s1 (including) | 21.1-r1-s1 (including) |
| Junos | Juniper | 21.1-r2 (including) | 21.1-r2 (including) |
| Junos | Juniper | 21.1-r2-s1 (including) | 21.1-r2-s1 (including) |
| Junos | Juniper | 21.1-r2-s2 (including) | 21.1-r2-s2 (including) |
| Junos | Juniper | 21.1-r3 (including) | 21.1-r3 (including) |
| Junos | Juniper | 21.1-r3-s1 (including) | 21.1-r3-s1 (including) |
| Junos | Juniper | 21.1-r3-s2 (including) | 21.1-r3-s2 (including) |
| Junos | Juniper | 21.1-r3-s3 (including) | 21.1-r3-s3 (including) |
| Junos | Juniper | 21.2 (including) | 21.2 (including) |
| Junos | Juniper | 21.2-r1 (including) | 21.2-r1 (including) |
| Junos | Juniper | 21.2-r1-s1 (including) | 21.2-r1-s1 (including) |
| Junos | Juniper | 21.2-r1-s2 (including) | 21.2-r1-s2 (including) |
| Junos | Juniper | 21.2-r2 (including) | 21.2-r2 (including) |
| Junos | Juniper | 21.2-r2-s1 (including) | 21.2-r2-s1 (including) |
| Junos | Juniper | 21.2-r2-s2 (including) | 21.2-r2-s2 (including) |
| Junos | Juniper | 21.2-r3 (including) | 21.2-r3 (including) |
| Junos | Juniper | 21.2-r3-s1 (including) | 21.2-r3-s1 (including) |
| Junos | Juniper | 21.2-r3-s2 (including) | 21.2-r3-s2 (including) |
| Junos | Juniper | 21.2-r3-s3 (including) | 21.2-r3-s3 (including) |
| Junos | Juniper | 21.3 (including) | 21.3 (including) |
| Junos | Juniper | 21.3-r1 (including) | 21.3-r1 (including) |
| Junos | Juniper | 21.3-r1-s1 (including) | 21.3-r1-s1 (including) |
| Junos | Juniper | 21.3-r1-s2 (including) | 21.3-r1-s2 (including) |
| Junos | Juniper | 21.3-r2 (including) | 21.3-r2 (including) |
| Junos | Juniper | 21.3-r2-s1 (including) | 21.3-r2-s1 (including) |
| Junos | Juniper | 21.3-r2-s2 (including) | 21.3-r2-s2 (including) |
| Junos | Juniper | 21.3-r3 (including) | 21.3-r3 (including) |
| Junos | Juniper | 21.3-r3-s1 (including) | 21.3-r3-s1 (including) |
| Junos | Juniper | 21.4 (including) | 21.4 (including) |
| Junos | Juniper | 21.4-r1 (including) | 21.4-r1 (including) |
| Junos | Juniper | 21.4-r1-s1 (including) | 21.4-r1-s1 (including) |
| Junos | Juniper | 21.4-r1-s2 (including) | 21.4-r1-s2 (including) |
| Junos | Juniper | 21.4-r2 (including) | 21.4-r2 (including) |
| Junos | Juniper | 21.4-r2-s1 (including) | 21.4-r2-s1 (including) |
| Junos | Juniper | 21.4-r2-s2 (including) | 21.4-r2-s2 (including) |
| Junos | Juniper | 21.4-r3 (including) | 21.4-r3 (including) |