CVE-2026-21907
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2026-21907, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-01-15

Last updated on: 2026-01-15

Assigner: Juniper Networks, Inc.

Description

A Use of a Broken or Risky Cryptographic Algorithm vulnerability in the TLS/SSL server of Juniper Networks Junos Space allows the use of static key ciphers (ssl-static-key-ciphers), reducing the confidentiality of on-path traffic communicated across the connection. These ciphers also do not support Perfect Forward Secrecy (PFS), affecting the long-term confidentiality of encrypted communications.This issue affects all versions of Junos Space before 24.1R5.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-01-15
Last Modified
2026-01-15
Generated
2026-07-06
AI Q&A
2026-01-16
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
juniper_networks junos_space to 24.1R5 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-327 The product uses a broken or risky cryptographic algorithm or protocol.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability involves the use of static key ciphers in the TLS/SSL server of Juniper Networks Junos Space. These static key ciphers reduce the confidentiality of traffic because they do not support Perfect Forward Secrecy (PFS), which means that if the static key is compromised, past communications can be decrypted. This affects the security of encrypted communications by making them more vulnerable to interception and decryption.

Impact Analysis

The vulnerability can impact you by reducing the confidentiality of your encrypted communications. Since static key ciphers do not support Perfect Forward Secrecy, an attacker who obtains the static key could decrypt past traffic, leading to potential exposure of sensitive information transmitted over the network.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-21907. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart