Latest vulnerabilities for "juniper junos"

Filter

Sort:

Versions

19.1-r1

Juniper JUNOSBuffer Overflow

critical

First published (updated )

CVE-2013-4685

Juniper JUNOSJunos OS: QFX5200 and QFX10002: Unintended ONIE partition was shipped with certain Junos OS .bin and .iso images

critical

First published (updated )

CVE-2018-0035

Juniper JUNOSSRX Series: Hardcoded credentials in Integrated UserFW feature.

critical

First published (updated )

CVE-2017-2343

Juniper JUNOSA specific device configuration can result in a commit failure condition. When this occurs, a user i…

critical

First published (updated )

CVE-2017-10601

Juniper JUNOSInfoleak

critical

First published (updated )

CVE-2016-1279

Never miss a vulnerability like this again

Read More Start Free Trial

Juniper JUNOSJunos OS and Junos OS Evolved: Upon receipt of a specific BGP FlowSpec message network traffic may be disrupted.

critical

First published (updated )

CVE-2021-0211

Juniper JUNOSJunos OS: SRX Series: Under a specific device configuration an attacker can access the devices J-Web management services from any interface, regardless of security settings protecting the service

critical

First published (updated )

CVE-2021-31384

Juniper JUNOSNFX Series: Hard-coded credentials allow an attacker to take control of any instance through administrative interfaces.

critical

First published (updated )

CVE-2021-0248

Juniper JUNOSJunos OS: SRX Series: A remote attacker may be able to cause a PFE buffer overflow to arbitrarily remotely execute code or commands on the target device with UTM enabled.

critical

First published (updated )

CVE-2021-0249

Juniper JUNOSJunos OS: vMX: Default credentials supplied in vMX configuration

critical

First published (updated )

CVE-2020-1615

Never miss a vulnerability like this again

Read More Start Free Trial

Juniper JUNOSNFX250 Series: Hardcoded credentials in the vSRX VNF instance.

critical

First published (updated )

CVE-2020-1614

Juniper JUNOSBuffer Overflow

critical

First published (updated )

CVE-2020-10188

Juniper JUNOSJunos OS: vMX series: Predictable IP ID sequence numbers vulnerability

critical

First published (updated )

CVE-2019-0007

Juniper JUNOSBuffer Overflow, Command Injection, Code Injection

critical

First published (updated )

CVE-2018-0007

Juniper JUNOSSRX Series: Command injection vulnerability in SRX IDP feature.

critical

9.9

First published (updated )

CVE-2017-2349

Never miss a vulnerability like this again

Read More Start Free Trial

Juniper JUNOSJunos OS: MX Series: Receipt of specific packets can cause services card to restart when DNS filtering is configured.

critical

9.9

First published (updated )

CVE-2020-1660

Juniper JUNOSJunos OS: SRX Series and EX Series: Security Vulnerability in J-web allows a preAuth Remote Code Execution

critical

9.8

EPSS

0.26%

First published (updated )

CVE-2024-21591

Juniper JUNOSJuniper Junos OS Path Traversal Vulnerability

critical

9.8

Exploited

First published (updated )

CVE-2020-1631

Juniper JUNOSNFX Series: Insecure sshd configuration in Juniper Device Manager (JDM) and host OS

critical

9.8

First published (updated )

CVE-2018-0044

Juniper JUNOSJunos OS: RPD daemon crashes due to receipt of crafted BGP NOTIFICATION messages

critical

9.8

First published (updated )

CVE-2018-0037

Never miss a vulnerability like this again

Read More Start Free Trial

Juniper JUNOSJunos: snmpd denial of service upon receipt of crafted SNMP packet

critical

9.8

First published (updated )

CVE-2017-2345

Juniper JUNOSJunos OS: SRX Series: If no-syn-check is enabled, traffic classified as UNKNOWN gets permitted by pre-id-default-policy

critical

9.8

First published (updated )

CVE-2022-22167

Juniper JUNOSInput Validation

critical

9.8

First published (updated )

CVE-2017-10615

Juniper JUNOSJunos OS: Remote code execution vulnerability in overlayd service

critical

9.8

First published (updated )

CVE-2021-0254

Juniper JUNOScSRX: Use of Hard-coded Cryptographic Keys allows an attacker to take control of the device through device management services.

critical

9.8

First published (updated )

CVE-2021-0266

Never miss a vulnerability like this again

Read More Start Free Trial

Juniper JUNOSJunos OS: SRX Series: Double free vulnerability can lead to DoS or remote code execution due to the processing of a specific HTTP message when ICAP redirect service is enabled

critical

9.8

First published (updated )

CVE-2020-1647

Juniper JUNOSJunos OS: SRX Series: processing a malformed HTTP message when ICAP redirect service is enabled may can lead to flowd process crash or remote code execution

critical

9.8

First published (updated )

CVE-2020-1654

Juniper JUNOSQFX5000 Series, EX4300, EX4600: A stack buffer overflow vulnerability in Packet Forwarding Engine manager (FXPC) process

critical

9.8

First published (updated )

CVE-2019-0008

Juniper JUNOSJunos OS: Firewall filter terms named "internal-1" and "internal-2" being ignored

critical

9.8

First published (updated )

CVE-2019-0036

Juniper JUNOSJunos OS: EX, QFX and MX series: Packet Forwarding Engine manager (FXPC) process crashes due to a crafted HTTP packet in a Virtual Chassis configuration

critical

9.8

First published (updated )

CVE-2019-0006

Never miss a vulnerability like this again

Read More Start Free Trial

Versions

Juniper JUNOSBuffer Overflow

Juniper JUNOSJunos OS: QFX5200 and QFX10002: Unintended ONIE partition was shipped with certain Junos OS .bin and .iso images

Juniper JUNOSSRX Series: Hardcoded credentials in Integrated UserFW feature.

Juniper JUNOSA specific device configuration can result in a commit failure condition. When this occurs, a user i…

Juniper JUNOSInfoleak

Never miss a vulnerability like this again

Juniper JUNOSJunos OS and Junos OS Evolved: Upon receipt of a specific BGP FlowSpec message network traffic may be disrupted.

Juniper JUNOSJunos OS: SRX Series: Under a specific device configuration an attacker can access the devices J-Web management services from any interface, regardless of security settings protecting the service

Juniper JUNOSNFX Series: Hard-coded credentials allow an attacker to take control of any instance through administrative interfaces.

Juniper JUNOSJunos OS: SRX Series: A remote attacker may be able to cause a PFE buffer overflow to arbitrarily remotely execute code or commands on the target device with UTM enabled.

Juniper JUNOSJunos OS: vMX: Default credentials supplied in vMX configuration

Never miss a vulnerability like this again

Juniper JUNOSNFX250 Series: Hardcoded credentials in the vSRX VNF instance.

Juniper JUNOSBuffer Overflow

Juniper JUNOSJunos OS: vMX series: Predictable IP ID sequence numbers vulnerability

Juniper JUNOSBuffer Overflow, Command Injection, Code Injection

Juniper JUNOSSRX Series: Command injection vulnerability in SRX IDP feature.

Never miss a vulnerability like this again

Juniper JUNOSJunos OS: MX Series: Receipt of specific packets can cause services card to restart when DNS filtering is configured.

Juniper JUNOSJunos OS: SRX Series and EX Series: Security Vulnerability in J-web allows a preAuth Remote Code Execution

Juniper JUNOSJuniper Junos OS Path Traversal Vulnerability

Juniper JUNOSNFX Series: Insecure sshd configuration in Juniper Device Manager (JDM) and host OS

Juniper JUNOSJunos OS: RPD daemon crashes due to receipt of crafted BGP NOTIFICATION messages

Never miss a vulnerability like this again

Juniper JUNOSJunos: snmpd denial of service upon receipt of crafted SNMP packet

Juniper JUNOSJunos OS: SRX Series: If no-syn-check is enabled, traffic classified as UNKNOWN gets permitted by pre-id-default-policy

Juniper JUNOSInput Validation

Juniper JUNOSJunos OS: Remote code execution vulnerability in overlayd service

Juniper JUNOScSRX: Use of Hard-coded Cryptographic Keys allows an attacker to take control of the device through device management services.

Never miss a vulnerability like this again

Juniper JUNOSJunos OS: SRX Series: Double free vulnerability can lead to DoS or remote code execution due to the processing of a specific HTTP message when ICAP redirect service is enabled

Juniper JUNOSJunos OS: SRX Series: processing a malformed HTTP message when ICAP redirect service is enabled may can lead to flowd process crash or remote code execution

Juniper JUNOSQFX5000 Series, EX4300, EX4600: A stack buffer overflow vulnerability in Packet Forwarding Engine manager (FXPC) process

Juniper JUNOSJunos OS: Firewall filter terms named "internal-1" and "internal-2" being ignored

Juniper JUNOSJunos OS: EX, QFX and MX series: Packet Forwarding Engine manager (FXPC) process crashes due to a crafted HTTP packet in a Virtual Chassis configuration

Never miss a vulnerability like this again

Company

Resources

Contact