Bright Nexus

Published on April 10, 2026

Juniper Networks Default Password Vulnerability Let Attacker Take Full Control of the Device

Severity

Critical

Detail

Cybersecurity researchers have identified a critical security vulnerability affecting Juniper Networks Support Insights Virtual Lightweight Collector (vLWC) appliances. This vulnerability allows unauthenticated attackers to remotely gain full administrative access to affected devices. The issue is caused using a default password that is pre-configured in the system and not enforced to be changed during initial setup.

Tracked as CVE-2026-33784, this flaw has a CVSS v3.1 score of 9.8 (Critical), indicating it is highly severe and easy to exploit. Attackers do not need prior access or user interaction, only network access to the device. The root cause is that vLWC software ships with a default administrator password, and the system does not require users to change it upon first login. If administrators fail to manually update the password, the device remains exposed with publicly known credentials.

Although this vulnerability was discovered internally by the Juniper Security Incident Response Team (SIRT), and no active exploitation has been reported so far, it poses a serious risk due to how easily attackers and automated tools can scan for default credentials.

CVE IDSummaryCVSS Score
CVE-2026-33784Default password vulnerability in vLWC allows unauthenticated remote attackers to gain full administrative control9.8 (Critical)

Affected Products

The affected product is as follows:

  • Juniper Networks Support Insights Virtual Lightweight Collector (vLWC)
  • All versions prior to 3.0.94

Recommendation

Users and administrators should take immediate action to reduce risk:

  • Upgrade to vLWC version 3.0.94 or later
  • Immediately change the default administrator password to a strong, unique password
  • Access the device via the JSI Shell to update credentials if patching is delayed
  • Regularly review system configurations and enforce secure password policies
  • Restrict network access to trusted users and systems only

Failure to secure affected devices may allow attackers to take full control and use them as entry points into internal networks.

Source
https://cybersecuritynews.com/juniper-networks-default-password-vulnerability/