Juniper Junos SRX Cluster Synchronization Failover Errors (JSA10806)
Medium Nessus Plugin ID 102081
SynopsisThe remote device is affected by a vulnerability that impacts device integrity.
DescriptionAccording to its self-reported version number and configuration, the remote Juniper Junos device is affected by a flaw in the handling of cluster synchronization and failover operations whenever the root account has been locked out. An unauthenticated, remote attacker can exploit this, via a series of unsuccessful login attempts, to cause synchronization or failover errors on the device.
SolutionUpgrade to the relevant Junos software release referenced in Juniper security advisory JSA10806.