{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33787", "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "state": "PUBLISHED", "assignerShortName": "juniper", "dateReserved": "2026-03-23T19:46:13.671Z", "datePublished": "2026-04-09T21:37:31.411Z", "dateUpdated": "2026-04-09T21:37:31.411Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["SRX1500", "SRX4100", "SRX4200", "SRX4600"], "product": "Junos OS", "vendor": "Juniper Networks", "versions": [{"lessThan": "23.2R2-S6", "status": "affected", "version": "0", "versionType": "semver"}, {"lessThan": "23.4R2-S7", "status": "affected", "version": "23.4", "versionType": "semver"}, {"lessThan": "24.2R2-S2", "status": "affected", "version": "24.2", "versionType": "semver"}, {"lessThan": "24.4R2", "status": "affected", "version": "24.4", "versionType": "semver"}, {"lessThan": "25.2R1-S1, 25.2R2", "status": "affected", "version": "25.2", "versionType": "semver"}]}], "datePublic": "2026-04-08T16:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon (chassisd) of Juniper Networks Junos OS on SRX1500, SRX4100, SRX4200 and SRX4600 allows a local attacker with low privileges to cause a complete Denial of Service (DoS).<br><br>When a specific 'show chassis' CLI command is executed, chassisd crashes and restarts which causes a momentary impact to all traffic until all modules are online again.<br><br>\n\n<p>This issue affects Junos OS on SRX1500, SRX4100, SRX4200 and SRX4600:&nbsp;</p><p></p><ul><li>23.2 versions before&nbsp;23.2R2-S6,</li><li>23.4 versions before&nbsp;23.4R2-S7</li><li>24.2 versions before 24.2R2-S2,</li><li>24.4 versions before 24.4R2,</li><li>25.2 versions before 25.2R1-S1, 25.2R2.</li></ul><p><br></p>"}], "value": "An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon (chassisd) of Juniper Networks Junos OS on SRX1500, SRX4100, SRX4200 and SRX4600 allows a local attacker with low privileges to cause a complete Denial of Service (DoS).\n\nWhen a specific 'show chassis' CLI command is executed, chassisd crashes and restarts which causes a momentary impact to all traffic until all modules are online again.\n\n\n\nThis issue affects Junos OS on SRX1500, SRX4100, SRX4200 and SRX4600:\u00a0\n\n\n\n * 23.2 versions before\u00a023.2R2-S6,\n * 23.4 versions before\u00a023.4R2-S7\n * 24.2 versions before 24.2R2-S2,\n * 24.4 versions before 24.4R2,\n * 25.2 versions before 25.2R1-S1, 25.2R2."}], "exploits": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"cvssV4_0": {"Automatable": "YES", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 6.8, "baseSeverity": "MEDIUM", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:Y/RE:M", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "MODERATE"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-754", "description": "CWE-754 Improper Check for Unusual or Exceptional Conditions", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "shortName": "juniper", "dateUpdated": "2026-04-09T21:37:31.411Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://kb.juniper.net/JSA107873"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "The following software releases have been updated to resolve this specific issue:&nbsp;23.2R2-S6, 23.4R2-S7, 24.2R2-S2, 24.4R2, 25.2R1-S1, 25.2R2, 25.4R1, and all subsequent releases."}], "value": "The following software releases have been updated to resolve this specific issue:\u00a023.2R2-S6, 23.4R2-S7, 24.2R2-S2, 24.4R2, 25.2R1-S1, 25.2R2, 25.4R1, and all subsequent releases."}], "source": {"advisory": "JSA107873", "defect": ["1890087"], "discovery": "INTERNAL"}, "title": "Junos OS: SRX1500, SRX4100, SRX4200, SRX4600: When a specific show command is executed chassisd crashes", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Use access lists or firewall filters to limit access to the CLI only from trusted hosts and administrators.<br><br>Utilize CLI authorization to disallow execution of the 'show chassis' command.<br>"}], "value": "Use access lists or firewall filters to limit access to the CLI only from trusted hosts and administrators.\n\nUtilize CLI authorization to disallow execution of the 'show chassis' command."}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon (chassisd) of Juniper Networks Junos OS on SRX1500, SRX4100, SRX4200 and SRX4600 allows a local attacker with low privileges to cause a complete Denial of Service (DoS).\n\nWhen a specific 'show chassis' CLI command is executed, chassisd crashes and restarts which causes a momentary impact to all traffic until all modules are online again.\n\n\n\nThis issue affects Junos OS on SRX1500, SRX4100, SRX4200 and SRX4600:\u00a0\n\n\n\n * 23.2 versions before\u00a023.2R2-S6,\n * 23.4 versions before\u00a023.4R2-S7\n * 24.2 versions before 24.2R2-S2,\n * 24.4 versions before 24.4R2,\n * 25.2 versions before 25.2R1-S1, 25.2R2."}], "id": "CVE-2026-33787", "lastModified": "2026-04-09T22:16:28.387", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "sirt@juniper.net", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "YES", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:X/RE:M/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "MODERATE"}, "source": "sirt@juniper.net", "type": "Secondary"}]}, "published": "2026-04-09T22:16:28.387", "references": [{"source": "sirt@juniper.net", "url": "https://kb.juniper.net/JSA107873"}], "sourceIdentifier": "sirt@juniper.net", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-754"}], "source": "sirt@juniper.net", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": ["srx1500", "srx4100", "srx4200", "srx4600"], "status": "affected", "versions": {"scheme": "generic", "value": "[0,23.2R2-S6)"}}, {"platform": ["srx1500", "srx4100", "srx4200", "srx4600"], "status": "affected", "versions": {"scheme": "generic", "value": "[23.4,23.4R2-S7)"}}, {"platform": ["srx1500", "srx4100", "srx4200", "srx4600"], "status": "affected", "versions": {"scheme": "generic", "value": "[24.2,24.2R2-S2)"}}, {"platform": ["srx1500", "srx4100", "srx4200", "srx4600"], "status": "affected", "versions": {"scheme": "generic", "value": "[24.4,24.4R2)"}}, {"platform": ["srx1500", "srx4100", "srx4200", "srx4600"], "status": "affected", "versions": {"scheme": "generic", "value": "[25.2,25.2R1-S1)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Junos OS", "source": "cna", "vendor": "Juniper Networks"}, "product": "junos_os", "vendor": "juniper_networks"}], "analysis": {"en": {"generated_at": "2026-04-09T23:24:20.648230+00:00", "value": {"mitigation_remediation": ["Upgrade Junos OS to at least 23.2R2\u2011S6, 23.4R2\u2011S7, 24.2R2\u2011S2, 24.4R2, 25.2R1\u2011S1, 25.2R2, 25.4R1 or any newer release.", "If an upgrade is not immediately possible, restrict CLI access to trusted hosts using access lists or firewall filters.", "Configure CLI authorization to block execution of the 'show chassis' command for low\u2011privileged users."], "summary": {"action": "Immediate Patch", "impact": "Denial of Service"}, "threat_synthesis": {"affected_systems": "Affected devices are Juniper SRX1500, SRX4100, SRX4200, and SRX4600 running Junos OS 23.2 versions older than 23.2R2\u2011S6, 23.4 versions older than 23.4R2\u2011S7, 24.2 versions older than 24.2R2\u2011S2, 24.4 versions older than 24.4R2, and 25.2 versions older than 25.2R1\u2011S1 or 25.2R2.", "description_and_impact": "The vulnerability is located in the chassis control daemon of Junos OS on SRX1500, SRX4100, SRX4200, and SRX4600 routers. A local attacker with low\u2011privilege access can run a specific 'show chassis' command from the CLI, triggering an improper check for unusual conditions in the daemon. When executed, the daemon crashes and automatically restarts, producing a temporary but complete denial of service as all device modules are brought back online. The weakness is classified as CWE\u2011754.", "risk_and_exploitability": "The CVSS score of 6.8 indicates medium severity, but the absence of an EPSS score and a lack of listing in the KEV catalog suggest the vulnerability is not yet widely exploited. The attack requires local CLI access, which could be obtained by a user with low privileges on the device. Because the exploit triggers simply by running the vulnerable command, it is straightforward once local access exists, and the resulting impact is a short service disruption."}}}}, "created": "2026-04-10T08:36:51.421747+00:00", "updated": "2026-04-10T09:27:48.490803+00:00", "vendors": ["juniper_networks", "juniper_networks$PRODUCT$junos_os"]}