{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Junos OS versions 24.2 ant\u00e9rieures \u00e0 24.2R2-S4 sur SRX Series et MX Series","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 24.4R2 ant\u00e9rieures \u00e0 24.4R2-S3","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 23.4-EVO ant\u00e9rieures \u00e0 23.4R2-S8-EVO","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 22.4 ant\u00e9rieures \u00e0 22.4R3-S9 sur SRX Series ","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 22.4R3 ant\u00e9rieures \u00e0 22.4R3-S8-EVO","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions ant\u00e9rieures \u00e0 21.2R3-S8-EVO sur PTX10004, PTX10008, PTX100016 avec JNP10K-LC1201 ou JNP10K-LC1202","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 24.4R1 ant\u00e9rieures \u00e0 24.4R1-S3","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 24.4R1-EVO ant\u00e9rieures \u00e0 24.4R1-S3-EVO","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 21.4 ant\u00e9rieures \u00e0 21.4R3-S12 sur SRX Series ","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 21.4-EVO ant\u00e9rieures \u00e0 21.4R3-S7-EVO sur PTX10004, PTX10008, PTX100016 avec JNP10K-LC1201 ou JNP10K-LC1202","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 23.4 ant\u00e9rieures \u00e0 23.4R2-S7","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 24.2 ant\u00e9rieures \u00e0 24.2R2-S3 sur SRX Series ","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions ant\u00e9rieures \u00e0 23.2R2-S6 sur SRX Series et MX Series","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 22.3-EVO ant\u00e9rieures \u00e0 22.3R3-S3-EVO sur PTX10004, PTX10008, PTX100016 avec JNP10K-LC1201 ou JNP10K-LC1202","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 22.4R3 ant\u00e9rieures \u00e0 22.4R3-S9-EVO sur PTX Series ","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 23.4 ant\u00e9rieures \u00e0 23.4R2-S7 sur SRX Series ","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 25.2R2 ant\u00e9rieures \u00e0 25.2R2","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 25.2R1 ant\u00e9rieures \u00e0 25.2R1-S2","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions ant\u00e9rieures \u00e0 23.4R2-S7 sur SRX Series et MX Series","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 24.2R2 ant\u00e9rieures \u00e0 24.2R2-S4","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 23.2 ant\u00e9rieures \u00e0 23.2R2-S6 sur SRX Series ","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 25.2R2-EVO ant\u00e9rieures \u00e0 25.2R2-EVO","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 24.2-EVO ant\u00e9rieures \u00e0 24.2R2-S4-EVO","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 22.4-EVO ant\u00e9rieures \u00e0 22.4R3-S2-EVO sur PTX10004, PTX10008, PTX100016 avec JNP10K-LC1201 ou JNP10K-LC1202","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 21.2R3 ant\u00e9rieures \u00e0 21.2R3-S10 sur SRX Series ","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS  versions 22.4 ant\u00e9rieures \u00e0 22.4R3-S9 sur SRX Series et MX Series","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 25.2 ant\u00e9rieures \u00e0 25.2R2 sur SRX Series et MX Series","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 23.2-EVO ant\u00e9rieures \u00e0 23.2R2-S5-EVO","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 23.2R2 ant\u00e9rieures \u00e0 23.2R2-S7","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":" JSI vLWC versions ant\u00e9rieures \u00e0 3.0.94","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 23.2-EVO ant\u00e9rieures \u00e0 23.2R2-S6-EVO sur PTX Series","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 23.2-EVO ant\u00e9rieures \u00e0 23.2R2-EVO sur PTX10004, PTX10008, PTX100016 avec JNP10K-LC1201 ou JNP10K-LC1202","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 22.2 ant\u00e9rieures \u00e0 22.2R3-S8 sur SRX Series ","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS versions 22.4R3 ant\u00e9rieures \u00e0 22.4R3-S9","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 25.2R1-EVO ant\u00e9rieures \u00e0 25.2R1-S2-EVO","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 24.4R2-EVO ant\u00e9rieures \u00e0 24.4R2-S3-EVO","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos OS Evolved versions 22.2-EVO ant\u00e9rieures \u00e0 22.2R3-S4-EVO sur PTX10004, PTX10008, PTX100016 avec JNP10K-LC1201 ou JNP10K-LC1202","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}}],"affected_systems_content":"","content":"## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des correctifs (cf. section Documentation).","cves":[{"name":"CVE-2026-33773","url":"https://www.cve.org/CVERecord?id=CVE-2026-33773"},{"name":"CVE-2026-33785","url":"https://www.cve.org/CVERecord?id=CVE-2026-33785"},{"name":"CVE-2026-33780","url":"https://www.cve.org/CVERecord?id=CVE-2026-33780"},{"name":"CVE-2022-24805","url":"https://www.cve.org/CVERecord?id=CVE-2022-24805"},{"name":"CVE-2026-21919","url":"https://www.cve.org/CVERecord?id=CVE-2026-21919"},{"name":"CVE-2026-33771","url":"https://www.cve.org/CVERecord?id=CVE-2026-33771"},{"name":"CVE-2025-30650","url":"https://www.cve.org/CVERecord?id=CVE-2025-30650"},{"name":"CVE-2026-33797","url":"https://www.cve.org/CVERecord?id=CVE-2026-33797"},{"name":"CVE-2026-33779","url":"https://www.cve.org/CVERecord?id=CVE-2026-33779"},{"name":"CVE-2025-13914","url":"https://www.cve.org/CVERecord?id=CVE-2025-13914"},{"name":"CVE-2026-33784","url":"https://www.cve.org/CVERecord?id=CVE-2026-33784"},{"name":"CVE-2026-33786","url":"https://www.cve.org/CVERecord?id=CVE-2026-33786"},{"name":"CVE-2026-33776","url":"https://www.cve.org/CVERecord?id=CVE-2026-33776"},{"name":"CVE-2026-21916","url":"https://www.cve.org/CVERecord?id=CVE-2026-21916"},{"name":"CVE-2026-33781","url":"https://www.cve.org/CVERecord?id=CVE-2026-33781"},{"name":"CVE-2026-33787","url":"https://www.cve.org/CVERecord?id=CVE-2026-33787"},{"name":"CVE-2026-33778","url":"https://www.cve.org/CVERecord?id=CVE-2026-33778"},{"name":"CVE-2026-33791","url":"https://www.cve.org/CVERecord?id=CVE-2026-33791"},{"name":"CVE-2026-33790","url":"https://www.cve.org/CVERecord?id=CVE-2026-33790"},{"name":"CVE-2026-33783","url":"https://www.cve.org/CVERecord?id=CVE-2026-33783"},{"name":"CVE-2026-33774","url":"https://www.cve.org/CVERecord?id=CVE-2026-33774"},{"name":"CVE-2026-33775","url":"https://www.cve.org/CVERecord?id=CVE-2026-33775"},{"name":"CVE-2026-33788","url":"https://www.cve.org/CVERecord?id=CVE-2026-33788"},{"name":"CVE-2026-33782","url":"https://www.cve.org/CVERecord?id=CVE-2026-33782"},{"name":"CVE-2026-21915","url":"https://www.cve.org/CVERecord?id=CVE-2026-21915"}],"links":[],"reference":"CERTFR-2026-AVI-0408","revisions":[{"description":"Version initiale","revision_date":"2026-04-09T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Juniper Networks. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper Networks","vendor_advisories":[{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107868","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-SRX-Series-MX-Series-When-a-specifically-malformed-first-ISAKMP-packet-is-received-kmd-iked-crashes-CVE-2026-33778"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107864","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-CTP-OS-Configuring-password-requirements-does-not-work-which-permits-the-use-of-weak-passwords-CVE-2026-33771"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107863","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-Privileged-local-user-can-gain-access-to-a-Linux-based-FPC-as-root-CVE-2025-30650"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107823","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-SRX-Series-Insufficient-certificate-verification-for-device-to-SD-cloud-communication-CVE-2026-33779"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107822","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-CVE-2022-24805-resolved-in-net-SNMP"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107872","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-MX-Series-Missing-Authorization-for-specific-request-CLI-commands-in-a-JDM-CSDS-scenario-CVE-2026-33785"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107869","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-EX-Series-QFX-Series-In-a-VXLAN-scenario-when-specific-control-protocol-packets-are-received-memory-leaks-and-eventually-no-traffic-is-passed-CVE-2026-33781"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107821","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-MX-Series-Mismatch-between-configured-and-received-packet-types-causes-memory-leak-in-bbe-smgd-CVE-2026-33775"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107865","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-MX-Series-Firewall-filters-on-lo0-non-0-in-the-default-routing-instance-are-not-in-effect-CVE-2026-33774"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107810","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-SRX1600-SRX2300-SRX4300-When-a-specific-show-command-is-executed-chassisd-crashes-CVE-2026-33786"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107871","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-vLWC-Default-password-is-not-required-to-be-changed-which-allows-unauthorized-high-privileged-access-CVE-2026-33784"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107820","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-MX-Series-In-specific-DHCPv6-scenarios-jdhcpd-memory-increases-continuously-with-subscriber-logouts-CVE-2026-33782"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107815","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-EX-Series-QFX-Series-If-the-same-egress-filter-is-configured-on-both-an-IRB-and-a-physical-interface-one-of-those-is-not-applied-CVE-2026-33773"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA106019","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-A-high-frequency-of-connecting-and-disconnecting-netconf-sessions-causes-management-unavailability-CVE-2026-21919"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107850","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-An-attacker-sending-a-specific-genuine-BGP-packet-causes-a-BGP-reset-CVE-2026-33797"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107866","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Specific-low-privileged-CLI-command-exposes-sensitive-information-CVE-2026-33776"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107873","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-SRX1500-SRX4100-SRX4200-SRX4600-When-a-specific-show-command-is-executed-chassisd-crashes-CVE-2026-33787"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107874","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-SRX-Series-In-a-NAT64-configuration-receipt-of-a-specific-malformed-ICMPv6-packet-will-cause-the-srxpfe-process-to-crash-and-restart-CVE-2026-33790"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107875","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Execution-of-crafted-CLI-commands-allows-for-arbitrary-shell-injection-as-root-CVE-2026-33791"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107807","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-A-low-privileged-user-can-escalate-their-privileges-so-that-they-can-login-as-root-CVE-2026-21916"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107806","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-Evolved-Local-authenticated-attackers-can-gain-access-to-FPCs-CVE-2026-33788"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA106016","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-JSI-Virtual-Lightweight-Collector-Shell-escape-allows-privilege-escalation-to-root-CVE-2026-21915"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107819","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-In-an-EVPN-MPLS-scenario-churn-of-ESI-routes-causes-a-memory-leak-in-l2ald-CVE-2026-33780"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107862","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Apstra-SSH-host-key-validation-vulnerability-for-managed-devices-CVE-2025-13914"},{"published_at":"2026-04-08","title":"Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA107870","url":"https://supportportal.juniper.net/s/article/2026-04-Security-Bulletin-Junos-OS-Evolved-PTX-Series-If-SRTE-tunnels-provisioned-via-PCEP-are-present-and-specific-gRPC-queries-are-received-evo-aftman-crashes-CVE-2026-33783"}]}