Critical Vulnerability in Juniper PTX Routers Allows Remote Code Execution

Severity: High (Score: 66.2)

Sources: Cybersecuritynews, Bleepingcomputer, Heise.De, Scworld, Cyberpress

Summary

A critical vulnerability identified as CVE-2026-21902 affects the Junos OS Evolved on PTX Series routers, enabling unauthenticated attackers to execute code with root privileges. These routers are widely used by internet service providers and cloud applications, making this flaw particularly significant for network security. The vulnerability was published on February 25, 2026.

Key Entities

• Zero-day Exploit (attack_type)
• J-magic (campaign)
• Mirai Botnet Campaigns (campaign)
• Juniper Networks (company)
• CVE-2026-21902 (cve)
• Energy (industry)
• Manufacturing (industry)
• Mirai (malware)
• Tinyshell (malware)
• T1190 - Exploit Public-Facing Application (mitre_attack)
• Juniper Networks PTX (platform)
• Juniper Smart Routers (platform)
• Juniper VPN Gateways (platform)
• Junos OS Evolved (platform)
• Junos OS MX Routers (platform)
• Incorrect Permission Assignment For Critical Resource (vulnerability)