CVE-2015-7755

CRITICAL KEV

Juniper ScreenOS <6.3.0r21 - RCE

Title source: llm

Description

Juniper ScreenOS 6.2.0r15 through 6.2.0r18, 6.3.0r12 before 6.3.0r12b, 6.3.0r13 before 6.3.0r13b, 6.3.0r14 before 6.3.0r14b, 6.3.0r15 before 6.3.0r15b, 6.3.0r16 before 6.3.0r16b, 6.3.0r17 before 6.3.0r17b, 6.3.0r18 before 6.3.0r18b, 6.3.0r19 before 6.3.0r19b, and 6.3.0r20 before 6.3.0r21 allows remote attackers to obtain administrative access by entering an unspecified password during a (1) SSH or (2) TELNET session.

Exploits (3)

nomisec WRITEUP 105 stars

by hdm · poc

https://github.com/hdm/juniper-cve-2015-7755

View Code ZIP pw:eip

nomisec WORKING POC 2 stars

by cinno · remote-auth

https://github.com/cinno/CVE-2015-7755-POC

View Code ZIP pw:eip

metasploit SCANNER

by hdm · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/ssh/juniper_backdoor.rb

View Code ZIP pw:eip

References (12)

[Various Sources] http://arstechnica.com/security/2015/12/unauthorized-code-in-juniper-firewalls-decrypts-encrypted-vpn-traffic/

[Various Sources] http://twitter.com/cryptoron/statuses/677900647560253442

[Various Sources] http://www.forbes.com/sites/thomasbrewster/2015/12/18/juniper-says-it-didnt-work-with-government-to-add-unauthorized-code-to-network-gear/

[Various Sources] http://www.wired.com/2015/12/juniper-networks-hidden-backdoors-show-the-risk-of-government-backdoors/

[Various Sources] https://adamcaudill.com/2015/12/17/much-ado-about-juniper/

[Various Sources] https://forums.juniper.net/t5/Security-Incident-Response/Important-Announcement-about-ScreenOS/ba-p/285554

[Various Sources] https://github.com/hdm/juniper-cve-2015-7755

[Exploit, Vendor Advisory] http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10713

[Third Party Advisory, US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-7755

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/79626

[Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/640184

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1034489

Scores

CVSS v3 9.8

EPSS 0.8516

EPSS Percentile 99.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2025-10-02

VulnCheck KEV 2015-12-23

ENISA EUVD EUVD-2015-7655

CWE

CWE-287

Status published

Products (1)

juniper/screenos 6.3.0 r17 (4 CPE variants)

Published Dec 19, 2015

KEV Added Oct 02, 2025

Tracked Since Feb 18, 2026