I really don't need to hear this on a Friday....

yeah, seriously

i am not going to point fingers, but there is one vendor that had or maybe still has issue, that allowed you to get to management interface of entire organization as administrator if you knew serial number of one of the devices deployed.

i by accident got into admin account of rather large organization with hundreds of devices active

this vendor didn't have proper way that allowed to disclose this issue in a anonymous fashion.

Barracuda Networks?

nope

Arista?

no.

not going to play this game further, sorry :) because eventually somebody will win.

i just checked, this vulnerability not published and i have no idea if it was quietly fixed and have no desire to try check it out

Probably Cisco Meraki.

¯\_(ツ)_/¯

Oh so juniper dont let Not Smart Assholes receive compromised firmware in netscreens for dgital hw and crypto industries overseas no more? SUpport portal information would be an improvement then!:)

Phew, then FISA is just some imagined rubber stamp used on NSLs, whatever those things are. Surely only applies in the domestic USA and it is not some kind of open secret about Juniper Netscreen devices I was implying or anything. Assumption also famously not the mother of any one fuck up in history, ever.

Juniper is the company that had so many different backdoors in their software they were interfering with each other but it wasn't clear who was stepping on whom, right?

'“If you don’t have a support contract you don’t get updates, it’s as simple as that,” George said'

funniest thing I've read all day.

Pretty soon someone will say criminals can't get guns because it's illegal (or against TOS)

It pains me because some of the largest companies in the world use Juniper and Palo Alto, etc. Even Cloudflare uses Juniper.

Wow.... nice one...