Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-28983


An OS Command Injection vulnerability in gRPC Network Operations Interface (gNOI) server module of Juniper Networks Junos OS Evolved allows an authenticated, low privileged, network based attacker to inject shell commands and execute code. This issue affects Juniper Networks Junos OS Evolved 21.4 version 21.4R1-EVO and later versions prior to 22.1R1-EVO.


Published

2023-04-17T22:15:09.810

Last Modified

2024-11-21T07:56:20.360

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses
  • Type: Primary
    CWE-78

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes
Operating System juniper junos_os_evolved 21.4 Yes

References