【Vulnerability Alert】 A Critical Security Vulnerability Exists in Junos OS MX Series (CVE-2026-33785)

publish date : 2026-04-13 update date : 2026-04-13

Source: Ministry of education information & communication security contingency platform

"" "" ""

Publication Number TACERT-ANA-2026041002043737 Publication Time 2026/04/10 14:28
Incident Type ANA-Vulnerability Alert Discovery Time 2026/04/10 14:28
Impact Level Low  
[Subject]
【Vulnerability Alert】 A Critical Security Vulnerability Exists in Junos OS MX Series (CVE-2026-33785)
[Content]
Forwarded from TWCERTCC-200-202604-00000007

A critical security vulnerability exists in the CLI of Juniper Networks Junos OS MX Series switches (CVE-2026-33785, CVSS: 8.8). This vulnerability allows an authenticated low-privileged user to execute unauthorized high-privileged commands, which may result in unauthorized control of the device.


(Information Sharing Level: WHITE (Information content can be publicly disclosed)
[Affected Platform]
Junos OS MX Series versions earlier than 24.4R2-S3 (excluding 24.4R2-S3)
Junos OS MX Series version 25.2R2
[Recommended Actions]

Please update Junos OS MX Series to version 24.4R2-S3, 25.2R2, 25.4R1, or later (inclusive).
[Reference]
 https://www.twcert.org.tw/tw/cp-169-10827-3ed3c-1.html
(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw
Organizer: Computer Center