What is CVE-2023-36851?

A medium-severity missing authentication vulnerability has been identified in Juniper Networks Junos OS on SRX Series. An unauthenticated attacker can exploit this vulnerability to impact file system integrity. Immediate remediation is essential.

What is the severity of CVE-2023-36851?

CVE-2023-36851 has a severity rating of MEDIUM with a CVSS base score of 5.3.

Is CVE-2023-36851 in CISA KEV?

Yes. CVE-2023-36851 is listed in the CISA Known Exploited Vulnerabilities (KEV) catalog. Organizations should prioritize remediation.

CVE-2023-36851 | Medium Vulnerability in Juniper Junos OS

A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to webauth_operation.php that doesn't require authentication, an attacker is able to upload and download arbitrary files via J-Web, leading to a loss of integrity or confidentiality, which may allow chaining to other vulnerabilities. This issue affects Juniper Networks Junos OS on SRX Series, including versions prior to 21.2R3-S8, 21.4R3-S6, 22.1R3-S5, 22.2R3-S3, 22.3R3-S2, 22.4R2-S2, and 23.2R1-S2.

The CVSS score for this vulnerability is 5.3, categorized as medium severity. The attack vector is network-based, with low attack complexity and no privileges required. User interaction is not necessary for exploitation. The potential impacts include a low integrity impact, while confidentiality and availability are unaffected.

Risk to organizations includes unauthorized file uploads and downloads, which could lead to further vulnerabilities being exploited. Organizations should prioritize patching immediately to mitigate potential risks associated with this vulnerability.

As of the last update, this vulnerability has been included in the Known Exploited Vulnerabilities (KEV) catalog, which indicates active exploitation risks. Organizations are advised to apply mitigations as soon as possible.

Vulnerability Details

The vulnerability allows unauthorized access to critical functions without authentication. Specifically, attackers can exploit the webauth_operation.php endpoint to manipulate files. This weakness falls under the CWE-306 categorization.

Technical Analysis

The root cause of this vulnerability is a lack of proper authentication mechanisms for critical functions in the Junos OS. The attack vector is network-based, and the complexity is low, as it does not require any special privileges or user interaction. The attack's success hinges on the ability to send crafted requests to the vulnerable endpoint. The integrity impact is low, allowing attackers to potentially alter file system integrity without detection.

Risk & Impact Analysis

Organizations that deploy Juniper Networks Junos OS on SRX Series are at risk of unauthorized file manipulation, which could lead to further vulnerabilities being exploited. The blast radius of this vulnerability could be significant, as it allows attackers to access and modify files without authentication. Given the CVSS score of 5.3 and inclusion in the KEV catalog, organizations should address this vulnerability in their priority patch cycle.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	Yes
Ransomware Use	No

Affected Versions

The following versions of Juniper Networks Junos OS on SRX Series are affected by this vulnerability: 21.2 versions prior to 21.2R3-S8, 21.4 versions prior to 21.4R3-S6, 22.1 versions prior to 22.1R3-S5, 22.2 versions prior to 22.2R3-S3, 22.3 versions prior to 22.3R3-S2, 22.4 versions prior to 22.4R2-S2, and 23.2 versions prior to 23.2R1-S2.

Mitigation & Remediation

Organizations should apply the vendor's patches as soon as they are available. For more details on mitigation and remediation strategies, refer to the vendor advisory.

Detection Guidance

Monitoring logs for unauthorized file access attempts or unexpected changes in the file system integrity could indicate exploitation attempts. Behavioral anomalies should also be tracked to detect any unusual activities.

AppSecure Threat Intelligence Insight

This vulnerability highlights the importance of robust authentication mechanisms for critical functions. Organizations should regularly review and strengthen their security policies to prevent similar vulnerabilities. To learn more about effective security testing, consider exploring our guides on penetration testing methodology and vulnerability management program design to better prepare for and respond to threats.

Organizations should validate their security posture through penetration testing to identify and remediate similar weaknesses.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2023-36851: Medium Vulnerability in Juniper Junos OS