LeakyCreds
NewInstant webhook alerts now available — notified within seconds of any credential detection.Learn more →
Home / Vulnerability Intelligence / CVE-2026-21902

CVE-2026-21902 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: February 27, 2026

Juniper Networks Junos OS Evolved - Broken Access Control

Published: February 25, 2026Updated: February 27, 2026Remote Exploitable

Overview

Juniper Networks Junos OS Evolved on PTX Series < 25.4R1-S1-EVO, 25.4R2-EVO contains an incorrect permission assignment for critical resource in the On-Box Anomaly detection framework, letting unauthenticated network attackers execute code as root remotely, exploit requires external access to the exposed service.

Severity & Score

Severity: Critical
CVSS Score: 9.8
EPSS Score: 28.2%(Probability of exploitation in next 30 days)

Impact

Remote attackers can execute code as root, gaining full control of the device.

Mitigation

Upgrade to versions 25.4R1-S1-EVO, 25.4R2-EVO or later.

References

Social Media Activity(5 posts)

CyberVeille.ch
CyberVeille.ch
@cyberveille
Mar 5, 2026

📢 CVE-2026-21902: exécution de code pré-auth sur Juniper Junos OS Evolved (PTX) via API d'anomalies 📝 Selon watchTowr Labs (labs.watchtowr.com), une vulnérabilit... 📖 cyberveille : https://cyberveille.ch/posts/2026-03-05-cve-2026-21902-execution-de-code-pre-auth-sur-juniper-junos-os-evolved-ptx-via-api-d-anomalies/ 🌐 source : https://labs.watchtowr.com/sometimes-you-can-just-feel-the-security-in-the-design-junos-os-evolved-cve-2026-21902-rce/ #CVE_2026_21902 #IOC #Cyberveille

View original post
HackerWorkspace
HackerWorkspace
@hackerworkspace
Mar 4, 2026

Sometimes, You Can Just Feel The Security In The Design (Juniper Junos Evolved CVE-2026-21902 Pre-Auth RCE) https://labs.watchtowr.com/sometimes-you-can-just-feel-the-security-in-the-design-junos-os-evolved-cve-2026-21902-rce/ #cybersecurity #vulnerability

View original post
AA
AA
@AAKL
Mar 3, 2026

New. WatchTower: Sometimes, You Can Just Feel The Security In The Design (Juniper Junos Evolved CVE-2026-21902 Pre-Auth RCE) https://labs.watchtowr.com/sometimes-you-can-just-feel-the-security-in-the-design-junos-os-evolved-cve-2026-21902-rce/ #infosec #threatresearch

View original post
The Threat Codex
The Threat Codex
@threatcodex
Mar 3, 2026

Sometimes, You Can Just Feel The Security In The Design (Junos OS Evolved CVE-2026-21902 RCE) #CVE_2026_21902 https://labs.watchtowr.com/sometimes-you-can-just-feel-the-security-in-the-design-junos-os-evolved-cve-2026-21902-rce/

View original post
/r/netsec
/r/netsec
@_r_netsec
Mar 3, 2026

Sometimes, You Can Just Feel The Security In The Design (Junos OS Evolved CVE-2026-21902 RCE) - watchTowr Labs https://labs.watchtowr.com/sometimes-you-can-just-feel-the-security-in-the-design-junos-os-evolved-cve-2026-21902-rce/

View original post

GitHub Repositories(1 repo)

Related Resources

Details

CVE ID
CVE-2026-21902
Severity
Critical
CVSS Score
9.8
Type
broken_access_control
Status
unconfirmed
EPSS
28.2%
Social Posts
5

CWE

  • CWE-732

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

28.2%Probability of exploitation in the next 30 days