轉發 台灣電腦網路危機處理暨協調中心 資安訊息警訊 TWCERTCC-200-202602-00000013

[內容說明]
Juniper Networks 針對旗下Junos OS Evolved PTX系列產品發布重大資安公告(CVE-2026-21902，CVSS：9.8)，此為關鍵資源權限分配錯誤漏洞，允許未經身分驗證的攻擊者以root身分執行程式碼。

[影響平台]
Junos OS Evolved PTX系列 25.4R1-S1-EVO、25.4R2-EVO版本

[建議措施]
請更新至以下版本： Junos OS Evolved PTX系列 25.4R1-S1-EVO、25.4R2-EVO、26.2R1-EVO(含)之後版本

[參考資料]
1. https://www.twcert.org.tw/tw/cp-169-10736-63e97-1.html

Forwarded from Taiwan Computer Network Crisis Management and Coordination Center: Cybersecurity Alert TWCERTCC-200-202602-00000013

[Content Description]
Juniper Networks has released a critical cybersecurity advisory (CVE-2026-21902, CVSS: 9.8) for its Junos OS Evolved PTX series products. This is a critical resource privilege allocation error vulnerability that allows an unauthenticated attacker to execute code with root privileges.

[Affected Platforms]
Junos OS Evolved PTX series: Versions 25.4R1-S1-EVO and 25.4R2-EVO

[Recommended Actions]
Please update to the following versions: Junos OS Evolved PTX series: Versions 25.4R1-S1-EVO, 25.4R2-EVO, 26.2R1-EVO (inclusive) and later

[References]
1. https://www.twcert.org.tw/tw/cp-169-10736-63e97-1.html