Juniper Plugin Configuration Detection Improvements

Plugins

• Plugin ID 121111: Junos OS: pd crash on VPLS PE upon receipt of specific BGP message (JSA10912) 
• Plugin ID 140586: Juniper Junos DNS filtering (JSA11028)
• Plugin ID 151634: Juniper Junos OS Vulnerability (JSA11193)

Target Release Date

18 September 2023

Change

A limited scope of Juniper vulnerability detection plugins have been modified to include checks for vulnerable configurations outlined in the associated vendor advisories. 

Impact

In an effort to improve detection accuracy, the plugins in the scope will now perform an additional check for vulnerable configurations. With this change, we anticipate a reduced false positive rate for systems with non-vulnerable configurations.