Skip main navigation (Press Enter).

Junos OS

View Only

Back to discussions

Expand all | Collapse all

OS Upgrade related VA

NAGENDRA KOLKONDA04-23-2026 05:42

Hello Team, We recently upgraded our EX4100-24P switches from Junos version 23.4R2-S5.8 to 23.4R2-S6.6. ...

Rene104-25-2026 03:49

Hi Nagendra, answers best I can • Is this vulnerability newly introduced/detected in 23.4R2-S6.6? ...

1. OS Upgrade related VA

Recommend
NAGENDRA KOLKONDA
Posted 04-23-2026 05:42

Reply Reply Privately
Hello Team,

We recently upgraded our EX4100-24P switches from Junos version 23.4R2-S5.8 to 23.4R2-S6.6.

After the upgrade, we started receiving a Vulnerability Alert (VA) related to CVE-2026-3379. This alert was not present in the previous version (23.4R2-S5.8).

Could you please help us understand:

Is this vulnerability newly introduced/detected in 23.4R2-S6.6?

Is there any official workaround or mitigation available?

Are there any recommended configurations or patches to address this issue?

Looking forward to your guidance.

------------------------------
NAGENDRA KOLKONDA
------------------------------
2. RE: OS Upgrade related VA

Recommend
Rene1
Posted 04-25-2026 03:49

Reply Reply Privately
Hi Nagendra, answers best I can

• Is this vulnerability newly introduced/detected in 23.4R2-S6.6?

Technically, the vulnerability existed in earlier code

• Is there any official workaround or mitigation available?

Restrict SSH access to trusted IPs; Disable unsigned Python scripts

• Are there any recommended configurations or patches to address this issue?

Thanks

FRom software perspective upgrade to 23.4R2-S7
-------------------------------------------

Powered by Higher Logic

Global message icon