PRUEBA AHORA

Juniper Junos OS SRX Series and EX Series Vulnerability Audit

Network Devices Vulnerability
  • This is a static report and therefore not updated automatically, which means that out-of-band updates are not included. However, you can adapt the query to your own needs.

Juniper Networks has released a series of security updates to Junos OS  SRX Series and EX Series in response to a critical RCE vulnerability. CVE-2024-21591 is an out-of-bounds write vulnerability in J-Web and received a CVSS score of 9.8. If successfully exploited it could lead to Denial of Service or Remote Code Execution. Make sure to update any vulnerable devices as soon as possible. You can read more details in our vulnerability blogpost.

The report below will give you an overview of all affected models of Juniper switches and firewalls that may be running a vulnerable version of Junos OS. You can find a list of all affected and fixed versions in Juniper’s security bulletin.

Run the Juniper SRX Firewalls and EX Switches Vulnerability Audit Report Now!

image 14

Juniper SRX Firewalls and EX Switches Vulnerability Lansweeper On-Prem Query

Select tblAssets.AssetID,
tblAssets.AssetName,
tsysAssetTypes.AssetTypeIcon10 As icon,
tblAssets.IPAddress,
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tblAssets.Description,
Case
When tblErrors.ErrorText Is Not Null Or
tblErrors.ErrorText != '' Then
'Scanning Error: ' + tsysasseterrortypes.ErrorMsg
Else ''
End As ScanningErrors,
tblAssets.Lastseen,
tblAssets.Lasttried
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Left Join (Select Distinct Top 1000000 tblErrors.AssetID As ID,
      Max(tblErrors.Teller) As ErrorID
    From tblErrors
    Group By tblErrors.AssetID) As ScanningError On tblAssets.AssetID =
      ScanningError.ID
  Left Join tblErrors On ScanningError.ErrorID = tblErrors.Teller
  Left Join tsysasseterrortypes On tsysasseterrortypes.Errortype =
      tblErrors.ErrorType
Where tblAssetCustom.Manufacturer Like '%Juniper Networks%' And
(tblAssetCustom.Model Like '%vSRX%' Or 
tblAssetCustom.Model Like '%cSRX%' Or
tblAssetCustom.Model Like '%SRX1600%' Or 
tblAssetCustom.Model Like '%SRX2300%' Or
tblAssetCustom.Model Like '%SRX4300%' Or
tblAssetCustom.Model Like '%SRX4700%' Or
tblAssetCustom.Model Like '%SRX1500%' Or
tblAssetCustom.Model Like '%SRX4100%' Or
tblAssetCustom.Model Like '%SRX4200%' Or
tblAssetCustom.Model Like '%SRX4600%' Or
tblAssetCustom.Model Like '%SRX5400%' Or
tblAssetCustom.Model Like '%SRX5600%' Or
tblAssetCustom.Model Like '%SRX5800%' Or
tblAssetCustom.Model Like '%SRX300%' Or
tblAssetCustom.Model Like '%SRX320%' Or
tblAssetCustom.Model Like '%SRX340%' Or
tblAssetCustom.Model Like '%SRX345%' Or
tblAssetCustom.Model Like '%SRX380%' Or
tblAssetCustom.Model Like '%SRX550%' Or
tblAssetCustom.Model Like '%EX4100%' Or
tblAssetCustom.Model Like '%EX4400%' Or
tblAssetCustom.Model Like '%EX4300%' Or
tblAssetCustom.Model Like '%EX3400%' Or
tblAssetCustom.Model Like '%EX2300%' Or
tblAssetCustom.Model Like '%EX9250%' Or
tblAssetCustom.Model Like '%EX9200%' Or
tblAssetCustom.Model Like '%EX4650%' Or
tblAssetCustom.Model Like '%EX4600%')
And tblState.Statename =
'Active'
Order By tblAssetCustom.Model,
tblAssets.IPAddress

Show

Hide