CVE-2026-33776

Junos OS and Junos OS Evolved: Specific low privileged CLI command exposes sensitive information

Assigner: juniper
Reserved: 23.03.2026 Published: 09.04.2026 Updated: 10.04.2026

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information.

A local user with low privileges can execute the CLI command 'show mgd' with specific arguments which will expose sensitive information.

This issue affects

Junos OS: * all versions before 22.4R3-S8, * 23.2 versions before 23.2R2-S6, * 23.4 versions before 23.4R2-S6, * 24.2 versions before 24.2R2-S4, * 24.4 versions before 24.4R2-S1, * 25.2 version before 25.2R1-S2, 25.2R2;

Junos OS Evolved: * all versions before 23.2R2-S6-EVO, * 23.4 version before 23.4R2-S6-EVO, * 24.2 version before 24.2R2-S4-EVO, * 24.4 versions before 24.4R2-S1-EVO, * 25.2 versions before 25.2R2-EVO.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVSS Score: 5.5

Attack Vector	Local	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	Low	Integrity Impact	None
User Interaction	None	Availability Impact	None

CVSS 3.1

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/AU:Y/RE:M
CVSS Score: 6.8

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Local	Confidentiality	High	Confidentiality	None
Attack Complexity	Low	Integrity	None	Integrity	None
Attack Requirements	None	Availability	None	Availability	None
Privileges Required	Low
User Interaction	None

CVSS 4.0

Product Status

Vendor	Juniper Networks
Product	Junos OS
Versions	Default: unaffected affected from 0 to 22.4R3-S8 (excl.) affected from 23.2 to 23.2R2-S6 (excl.) affected from 23.4 to 23.4R2-S6 (excl.) affected from 24.2 to 24.2R2-S4 (excl.) affected from 24.4 to 24.4R2-S1 (excl.) affected from 25.2 to 25.2R1-S2, 25.2R2 (excl.)

Vendor

Juniper Networks

Product

Junos OS

Versions

Default: unaffected

affected from 0 to 22.4R3-S8 (excl.)
affected from 23.2 to 23.2R2-S6 (excl.)
affected from 23.4 to 23.4R2-S6 (excl.)
affected from 24.2 to 24.2R2-S4 (excl.)
affected from 24.4 to 24.4R2-S1 (excl.)
affected from 25.2 to 25.2R1-S2, 25.2R2 (excl.)

Vendor	Juniper Networks
Product	Junos OS Evolved
Versions	Default: unaffected affected from 0 to 23.2R2-S6-EVO (excl.) affected from 23.4 to 23.4R2-S6-EVO (excl.) affected from 24.2 to 24.2R2-S4-EVO (excl.) affected from 24.4 to 24.4R2-S1-EVO (excl.) affected from 25.2 to 25.2R2-EVO (excl.)

Vendor

Juniper Networks

Product

Junos OS Evolved

Versions

Default: unaffected

affected from 0 to 23.2R2-S6-EVO (excl.)
affected from 23.4 to 23.4R2-S6-EVO (excl.)
affected from 24.2 to 24.2R2-S4-EVO (excl.)
affected from 24.4 to 24.4R2-S1-EVO (excl.)
affected from 25.2 to 25.2R2-EVO (excl.)

Exploits

Juniper SIRT is not aware of any malicious exploitation of this vulnerability.

Workarounds

Use access lists or firewall filters to limit access to the CLI only from trusted hosts and administrators.

Utilize CLI authorization to disallow execution of the 'show mgd' commands.

Solutions

The following software releases have been updated to resolve this specific issue: Junos OS Evolved: 23.2R2-S6-EVO, 23.4R2-S6-EVO, 24.2R2-S4-EVO, 24.4R2-S1-EVO, 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases; Junos OS: 22.4R3-S8, 23.2R2-S6, 23.4R2-S6, 24.2R2-S4, 24.4R2-S1, 25.2R1-S2, 25.2R2, 25.4R1, and all subsequent releases.

References

Problem Types

CWE-862 Missing Authorization CWE

CVE-2026-33776 PUBLISHED