Posting Date: 2026/04/28

【Vulnerability Advisory】Critical Security Vulnerability in Juniper Networks CTP OS (CVE-2026-33771)

Subject: 【Vulnerability Advisory】Critical Security Vulnerability in Juniper Networks CTP OS (CVE-2026-33771)

Description:
- Forwarded from Taiwan Computer Emergency Response Team / Coordination Center (TWCERT/CC) Security Alert: TWCERTCC-200-202604-00000009
- A critical security vulnerability exists in Juniper Networks CTP OS (CVE-2026-33771, CVSS 4.x: 9.1)[cite: 1]. This is a weak password requirement vulnerability that may allow unauthenticated network attackers to gain control of the device by exploiting the weak passwords of local accounts.
Affected Platforms:
- Juniper Networks CTP OS versions 9.2R1 and 9.2R2
Recommended Actions:
- Please update to Juniper Networks CTP OS version 9.3R1 or later.
Reference:
1. https://www.twcert.org.tw/tw/cp-169-10829-d8f35-1.html

Computer and Communication Center
Network Systems Division