CVE-2025-6549

Junos OS: SRX Series: J-Web can be exposed on additional interfaces

Description

An Incorrect Authorization vulnerability in the web server of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to reach the Juniper Web Device Manager (J-Web). When Juniper Secure connect (JSC) is enabled on specific interfaces, or multiple interfaces are configured for J-Web, the J-Web UI is reachable over more than the intended interfaces. This issue affects Junos OS: * all versions before 21.4R3-S9, * 22.2 versions before 22.2R3-S5, * 22.4 versions before 22.4R3-S5, * 23.2 versions before 23.2R2-S3, * 23.4 versions before 23.4R2-S5, * 24.2 versions before 24.2R2.

Remediation

Solution:

The following software releases have been updated to resolve this specific issue: 21.4R3-S9, 22.2R3-S5, 22.4R3-S5, 23.2R2-S3, 23.4R2-S5, 24.2R2, 24.4R1, and all subsequent releases.

Workaround:

To reduce the risk of exploitation configure a firewall filter on all ingress interfaces over which J-Web is not meant to be reachable or ensure that the resp. security policies don't allow such connections.

References

Link	Tags
https://supportportal.juniper.net/JSA100098	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2025-6549?: CVE-2025-6549 has been scored as a medium severity vulnerability.
How to fix CVE-2025-6549?: To fix CVE-2025-6549: The following software releases have been updated to resolve this specific issue: 21.4R3-S9, 22.2R3-S5, 22.4R3-S5, 23.2R2-S3, 23.4R2-S5, 24.2R2, 24.4R1, and all subsequent releases.
Is CVE-2025-6549 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2025-6549 is being actively exploited.
What software or system is affected by CVE-2025-6549?: CVE-2025-6549 affects Juniper Networks Junos OS.

Description

Remediation

Category

CWE-863 – Incorrect Authorization

References

Frequently Asked Questions