CVE-2026-21907
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2026-01-15

Last updated on: 2026-01-15

Assigner: Juniper Networks, Inc.

Description
A Use of a Broken or Risky Cryptographic Algorithm vulnerability in the TLS/SSL server of Juniper Networks Junos Space allows the use of static key ciphers (ssl-static-key-ciphers), reducing the confidentiality of on-path traffic communicated across the connection. These ciphers also do not support Perfect Forward Secrecy (PFS), affecting the long-term confidentiality of encrypted communications.This issue affects all versions of Junos Space before 24.1R5.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-01-15
Last Modified
2026-01-15
Generated
2026-06-16
AI Q&A
2026-01-16
EPSS Evaluated
2026-06-15
NVD
CVE-2026-21907
EUVD
EUVD-2026-2700
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
juniper_networks junos_space to 24.1R5 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-327 The product uses a broken or risky cryptographic algorithm or protocol.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability involves the use of static key ciphers in the TLS/SSL server of Juniper Networks Junos Space. These static key ciphers reduce the confidentiality of traffic because they do not support Perfect Forward Secrecy (PFS), which means that if the static key is compromised, past communications can be decrypted. This affects the security of encrypted communications by making them more vulnerable to interception and decryption.

Impact Analysis

The vulnerability can impact you by reducing the confidentiality of your encrypted communications. Since static key ciphers do not support Perfect Forward Secrecy, an attacker who obtains the static key could decrypt past traffic, leading to potential exposure of sensitive information transmitted over the network.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-21907. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart