cbcvebase.
CVE-2024-2973
published 2024-06-27

CVE-2024-2973: An Authentication Bypass Using an Alternate Path or Channel vulnerability in Juniper Networks Session Smart Router or conductor running with a redundant peer…

PriorityP270critical10CVSS 3.1
AVNACLPRNUINSCCHIHAH
EPSS
1.09%
61.1th percentile
An Authentication Bypass Using an Alternate Path or Channel vulnerability in Juniper Networks Session Smart Router or conductor running with a redundant peer allows a network based attacker to bypass authentication and take full control of the device. Only routers or conductors that are running in high-availability redundant configurations are affected by this vulnerability. No other Juniper Networks products or platforms are affected by this issue. This issue affects: Session Smart Router: * All versions before 5.6.15, * from 6.0 before 6.1.9-lts, * from 6.2 before 6.2.5-sts. Session Smart Conductor: * All versions before 5.6.15, * from 6.0 before 6.1.9-lts, * from 6.2 before 6.2.5-sts. WAN Assurance Router: * 6.0 versions before 6.1.9-lts, * 6.2 versions before 6.2.5-sts.

Affected

8 ranges
VendorProductVersion rangeFixed in
juniper_networkssession_smart_conductor< 5.6.155.6.15
juniper_networkssession_smart_conductor>= 6.0 < 6.1.9-lts6.1.9-lts
juniper_networkssession_smart_conductor>= 6.2 < 6.2.5-sts6.2.5-sts
juniper_networkssession_smart_router< 5.6.155.6.15
juniper_networkssession_smart_router>= 6.0 < 6.1.9-lts6.1.9-lts
juniper_networkssession_smart_router>= 6.2 < 6.2.5-sts6.2.5-sts
juniper_networkswan_assurance_router>= 6.0 < 6.1.9-lts6.1.9-lts
juniper_networkswan_assurance_router>= 6.2 < 6.2.5-sts6.2.5-sts

Detection & IOCsextracted from sources · hover to see the quote

  • Target devices are Juniper Networks Session Smart Router (SSR) or Session Smart Conductor running in high-availability redundant configurations — only HA/redundant-peer deployments are exploitable
  • Attack vector is network-based with no authentication required; monitor for unexpected administrative access or session takeover on SSR/Conductor management interfaces from external network sources
  • CVE-2024-2973 was actively targeted in attacks shortly after patch release; prioritize detection on internet-exposed SSR/Conductor management planes
  • ·Only high-availability (redundant peer) deployments of Session Smart Router or Conductor are vulnerable; standalone (non-HA) deployments are NOT affected
  • ·No other Juniper Networks products or platforms are affected by this issue

CVSS provenance

nvdv3.110.0CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
nvdv4.010.0CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:M/U:Red
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.