CVE-2026-21902
Incorrect Permission Assignment in Junos PTX Anomaly Detection Enables Root RCE
Publication date: 2026-02-25
Last updated on: 2026-03-30
Assigner: Juniper Networks, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| juniper | junos_os_evolved | 25.4 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-732 | The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Incorrect Permission Assignment for a Critical Resource in the On-Box Anomaly detection framework of Juniper Networks Junos OS Evolved on PTX Series devices.
The framework should only be accessible by internal processes over the internal routing instance, but due to this issue, it is reachable over an externally exposed port.
An unauthenticated, network-based attacker can exploit this to execute code with root privileges, effectively taking complete control of the device.
This service is enabled by default without requiring specific configuration.
How can this vulnerability impact me? :
An attacker exploiting this vulnerability can gain root-level access to the affected device remotely without authentication.
This allows the attacker to execute arbitrary code, potentially leading to full device compromise.
Such control can disrupt network operations, compromise sensitive data, and allow further attacks within the network.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know