Forwarded from Taiwan Computer Network Crisis Management and Coordination Center: Cybersecurity Alert TWCERTCC-200-202604-00000008

[Description]
Juniper Networks Support Insights (JSI) Virtual Lightweight Collector (vLWC) has a critical cybersecurity vulnerability (CVE-2026-33784, CVSS: 9.8). This vulnerability allows attackers to use known default credentials to log in and gain high-privilege access, potentially leading to device control.

[Affected Platforms]
Juniper Networks Support Insights vLWC versions prior to 3.0.94 (excluding 3.0.94)

[Recommended Action]
Please update to Juniper Networks Support Insights vLWC version 3.0.94 or later.

[References]
1. https://www.twcert.org.tw/tw/cp-169-10828-12f00-1.html