List of Juniper Networks Products impacted by Log4j Vulnerability

Some of the Juniper Networks Products has been also affected by the Critical Log4j Vulnerability that was discovered on Dec 10th. As of now no patch has been released by Juniper Networks but they have provided mitigations and workarounds for some of the products to prevent the exploitation of the vulnerability. Except the products listed below as Vulnerable, almost all other products are not Vulnerable but the Juniper Team is continuing to invest as per their latest advisory.


Juniper Networks ProductVersionsStatusPatched
 Cross Provisioning PlatformAllVulnerableNot Yet
 Advanced Threat Prevention (JATP)AllNot VulnerableNot Needed
 AppFormixAllNot VulnerableNot Needed
 Apstra SystemAllNot VulnerableNot Needed
 BTI hardware platformsAllNot VulnerableNot Needed
 BTI ProNX PSM SoftwareAllVulnerableNot Yet
 Connectivity Services DirectorAllNot VulnerableNot Needed
 Contrail AnalyticsAllNot VulnerableNot Needed
 Contrail CloudAllNot VulnerableNot Needed
 Contrail NetworkingAllNot VulnerableNot Needed
 Contrail Service OrchestrationAllNot VulnerableNot Needed
 CTPOS and CTPViewAllNot VulnerableNot Needed
 ICEAAA ManagerAllNot VulnerableNot Needed
 JATP CloudAllNot VulnerableNot Needed
 JSA SeriesAllNot VulnerableNot Needed
 JSA Risk ManagerAllVulnerableNot Yet
 JSA Series User Behavior AnalyticsAllVulnerableNot Yet
 Juniper Identity Management Services (JIMS)AllNot VulnerableNot Needed
 Juniper Mist EdgeAllNot VulnerableNot Needed
 Juniper Sky EnterpriseAllNot VulnerableNot Needed
 Junos FusionAllNot VulnerableNot Needed
 Junos OS EvolvedAllNot VulnerableNot Needed
 Junos OSAllNot VulnerableNot Needed
 Junos Space Network Management PlatformAllVulnerableNot Yet
 Mist Access PointsAllNot VulnerableNot Needed
 Mist WAN AssuranceAllNot VulnerableNot Needed
 Mist AIAllNot VulnerableNot Needed
 Mist Wi-Fi AssuranceAllNot VulnerableNot Needed
 Mist Wired AssuranceAllNot VulnerableNot Needed
 Mist Premium AnalyticsAllNot VulnerableNot Needed
 Mist Marvis Virtual Network Assistant AllNot VulnerableNot Needed
 NorthStar ControllerAllVulnerableNot Yet
 NorthStar PlannerAllVulnerableNot Yet
 Network DirectorAllNot VulnerableNot Needed
 Network and Security Manager (NSM)AllVulnerableNot Yet
 Paragon Active AssuranceAllNot VulnerableNot Needed
 Paragon Pathfinder21 & laterVulnerableNot Yet
 Paragon Planner21 & laterVulnerableNot Yet
 Paragon InsightsAllNot VulnerableNot Needed
 Policy EnforcerAllNot VulnerableNot Needed
 SBR Carrier EditionAllNot VulnerableNot Needed
 ScreenOSAllNot VulnerableNot Needed
 SecIntelAllNot VulnerableNot Needed
 Security Director InsightsAllNot VulnerableNot Needed
 Security DirectorAllNot VulnerableNot Needed
 Secure AnalyticsAllVulnerableNot Yet
 Session Smart Router (Formerly 128T)AllNot VulnerableNot Needed
 Satellite NOSAllNot VulnerableNot Needed
 Space SDKAllNot VulnerableNot Needed
 Standalone Log Collector 20.1 AllNot VulnerableNot Needed
 Virtual BLEAllNot VulnerableNot Needed
 WANDL IP/MPLSViewAllVulnerableNot Yet
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11259&actp=SUBSCRIPTION


There has been some mitigation provided by the Juniper Networks Team for some of the products in the above link.


Shan

I am a  Technical Architect who dabbles with different languages and technologies

You may also like...