Latest high severity vulnerabilities for "juniper junos" 12.3

Juniper JUNOSJunos OS: A XSS vulnerability allows an attacker to execute commands on a target J-Web session

high

8.8

First published (updated )

CVE-2022-22182

Juniper JUNOSJunos OS and Junos OS Evolved: After receiving a specific number of crafted packets snmpd will segmentation fault (SIGSEGV) requiring a manual restart.

high

7.5

First published (updated )

CVE-2022-22177

Juniper JUNOSJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root

high

8.8

First published (updated )

CVE-2021-31385

Juniper JUNOSJunos OS: Receipt of a specific BGP update may cause RPKI policy-checks to be bypassed

high

7.2

First published (updated )

CVE-2021-31375

Juniper JUNOSJunos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore)

high

7.8

First published (updated )

CVE-2021-0284

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSJunos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore)

high

7.8

First published (updated )

CVE-2021-0283

Juniper JUNOSJunos OS: RPD crash while processing a specific BGP UPDATE when Multipath or add-path features are enabled

high

7.5

First published (updated )

CVE-2021-0282

Juniper JUNOSJunos OS and Junos OS Evolved: LLDP Out-of-Bounds Read vulnerability in l2cpd

high

8.8

First published (updated )

CVE-2021-0277

Juniper JUNOSJunos OS: Denial of Service vulnerability in J-Web and web based (HTTP/HTTPS) services caused by a high number of specific requests

high

7.5

First published (updated )

CVE-2021-0261

Juniper JUNOSJunos OS: When a DHCPv6 Relay-Agent is configured upon receipt of a specific DHCPv6 client message, Remote Code Execution may occur.

high

8.8

First published (updated )

CVE-2020-1656

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSJunos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM connectivity fault management process (CFM) to core.

high

7.5

First published (updated )

CVE-2020-1639

Juniper JUNOSJunos OS: BGP session termination upon receipt of specific BGP FlowSpec advertisement.

high

8.6

First published (updated )

CVE-2020-1613

Juniper JUNOSXSS

high

7.1

First published (updated )

CVE-2014-6447

Juniper JUNOSJunos OS: Cross-Site Scripting (XSS) in J-Web

high

7.5

First published (updated )

CVE-2020-1607

Juniper JUNOSJunos OS: Path traversal vulnerability in J-Web

high

8.1

First published (updated )

CVE-2020-1606

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSJunos OS: Persistent XSS vulnerability in J-Web

high

8.8

First published (updated )

CVE-2019-0047

Juniper JUNOSJunos OS: Session fixation vulnerability in J-Web

high

8.8

First published (updated )

CVE-2019-0062

Juniper JUNOSJunos OS: Insufficient validation of environment variables in telnet client may lead to stack-based buffer overflow

high

7.8

First published (updated )

CVE-2019-0053

Juniper JUNOSJunos OS: RPD process crashes upon receipt of a specific SNMP packet

high

7.5

First published (updated )

CVE-2019-0043

Juniper JUNOSJunos OS: rpd crash on VPLS PE upon receipt of specific BGP message

high

7.5

First published (updated )

CVE-2019-0012

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSJunos OS: A flowspec BGP update with a specific term-order causes routing protocol daemon (rpd) process to crash with a core.

high

7.5

First published (updated )

CVE-2019-0003

Juniper JUNOSJunos OS: RPD daemon crashes due to receipt of specific Draft-Rosen MVPN control packet in Draft-Rosen MVPN configuration

high

8.8

First published (updated )

CVE-2018-0045

Juniper JUNOSJunos OS: Denial of Service in J-Web

high

7.5

First published (updated )

CVE-2018-0062

Juniper JUNOSJunos OS: RPD daemon crashes upon receipt of specific MPLS packet

high

8.8

First published (updated )

CVE-2018-0043

Juniper JUNOSNull Pointer Dereference

high

7.5

First published (updated )

CVE-2018-15505

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSNull Pointer Dereference

high

7.5

First published (updated )

CVE-2018-15504

Juniper JUNOSJunos OS: A privilege escalation vulnerability exists where authenticated users with shell access can become root

high

7.8

First published (updated )

CVE-2018-0024

Juniper JUNOSJunos: Privilege escalation vulnerabilities in Junos CLI

high

8.4

First published (updated )

CVE-2016-4922

Juniper JUNOSJunos: RPD crash due to malformed BGP OPEN message

high

7.5

First published (updated )

CVE-2017-2314

Juniper JUNOSOn Juniper Networks products or platforms running Junos OS 12.1X46 prior to 12.1X46-D55, 12.1X47 pri…

high

7.8

First published (updated )

CVE-2017-2302

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSOn Juniper Networks products or platforms running Junos OS 12.1X46 prior to 12.1X46-D50, 12.1X47 pri…

high

7.8

First published (updated )

CVE-2017-2303

Juniper JUNOSOn Juniper Networks products or platforms running Junos OS 11.4 prior to 11.4R13-S3, 12.1X46 prior t…

high

7.8

First published (updated )

CVE-2017-2301

Juniper JUNOSJunos: IPv6 denial of service vulnerability due to resource exhaustion (CVE-2016-4921)

high

7.8

First published (updated )

CVE-2016-4921

Juniper JUNOSJunos J-Web: Cross Site Scripting Vulnerability

high

8

First published (updated )

CVE-2016-4923

Juniper JUNOSJuniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D30, 12.3 be…

high

7.8

First published (updated )

CVE-2016-1269

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSInput Validation

high

7.8

First published (updated )

CVE-2016-1271

Juniper JUNOSThe rpd daemon in Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D45, 12.1X47 before 12…

high

7.5

First published (updated )

CVE-2016-1270

Juniper JUNOSRace Condition

high

8.8

First published (updated )

CVE-2016-1264

Juniper JUNOSJunos: vulnerabilities in J-Web (CVE-2016-1261)

high

8.8

First published (updated )

CVE-2016-1261

Juniper JUNOSThe SSH server in Juniper Junos OS before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 12…

high

7.8

First published (updated )

CVE-2015-7752

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSBuffer Overflow

high

7.8

First published (updated )

CVE-2014-6450

Juniper JUNOSNull Pointer Dereference

high

7.1

First published (updated )

CVE-2015-5359

Juniper JUNOSJuniper Junos 11.4 before 11.4R8, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 be…

high

7.8

First published (updated )

CVE-2014-6386

Juniper JUNOSJuniper Junos 11.4 before R12-S4, 12.1X44 before D35, 12.1X45 before D30, 12.1X46 before D25, 12.1X4…

high

7.8

First published (updated )

CVE-2014-6378

Juniper JUNOSJuniper Junos 11.4 before R11, 12.1 before R9, 12.1X44 before D30, 12.1X45 before D20, 12.1X46 befor…

high

7.8

First published (updated )

CVE-2014-6380

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSJuniper Junos 11.4 before R12, 12.1 before R10, 12.1X44 before D35, 12.1X45 before D25, 12.1X46 befo…

high

7.5

First published (updated )

CVE-2014-6379

Juniper JUNOSBuffer Overflow

high

7.8

First published (updated )

CVE-2014-3818

Juniper JUNOSInput Validation

high

7.8

First published (updated )

CVE-2014-3819

Juniper JUNOSRace Condition

high

7.1

First published (updated )

CVE-2014-0616

Juniper JUNOSThe XNM command processor in Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before 12…

high

7.1

First published (updated )

CVE-2014-0613

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Juniper JUNOSJunos OS: A XSS vulnerability allows an attacker to execute commands on a target J-Web session

Juniper JUNOSJunos OS and Junos OS Evolved: After receiving a specific number of crafted packets snmpd will segmentation fault (SIGSEGV) requiring a manual restart.

Juniper JUNOSJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root

Juniper JUNOSJunos OS: Receipt of a specific BGP update may cause RPKI policy-checks to be bypassed

Juniper JUNOSJunos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore)

Never miss a vulnerability like this again

Juniper JUNOSJunos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore)

Juniper JUNOSJunos OS: RPD crash while processing a specific BGP UPDATE when Multipath or add-path features are enabled

Juniper JUNOSJunos OS and Junos OS Evolved: LLDP Out-of-Bounds Read vulnerability in l2cpd

Juniper JUNOSJunos OS: Denial of Service vulnerability in J-Web and web based (HTTP/HTTPS) services caused by a high number of specific requests

Juniper JUNOSJunos OS: When a DHCPv6 Relay-Agent is configured upon receipt of a specific DHCPv6 client message, Remote Code Execution may occur.

Never miss a vulnerability like this again

Juniper JUNOSJunos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM connectivity fault management process (CFM) to core.

Juniper JUNOSJunos OS: BGP session termination upon receipt of specific BGP FlowSpec advertisement.

Juniper JUNOSXSS

Juniper JUNOSJunos OS: Cross-Site Scripting (XSS) in J-Web

Juniper JUNOSJunos OS: Path traversal vulnerability in J-Web

Never miss a vulnerability like this again

Juniper JUNOSJunos OS: Persistent XSS vulnerability in J-Web

Juniper JUNOSJunos OS: Session fixation vulnerability in J-Web

Juniper JUNOSJunos OS: Insufficient validation of environment variables in telnet client may lead to stack-based buffer overflow

Juniper JUNOSJunos OS: RPD process crashes upon receipt of a specific SNMP packet

Juniper JUNOSJunos OS: rpd crash on VPLS PE upon receipt of specific BGP message

Never miss a vulnerability like this again

Juniper JUNOSJunos OS: A flowspec BGP update with a specific term-order causes routing protocol daemon (rpd) process to crash with a core.

Juniper JUNOSJunos OS: RPD daemon crashes due to receipt of specific Draft-Rosen MVPN control packet in Draft-Rosen MVPN configuration

Juniper JUNOSJunos OS: Denial of Service in J-Web

Juniper JUNOSJunos OS: RPD daemon crashes upon receipt of specific MPLS packet

Juniper JUNOSNull Pointer Dereference

Never miss a vulnerability like this again

Juniper JUNOSNull Pointer Dereference

Juniper JUNOSJunos OS: A privilege escalation vulnerability exists where authenticated users with shell access can become root

Juniper JUNOSJunos: Privilege escalation vulnerabilities in Junos CLI

Juniper JUNOSJunos: RPD crash due to malformed BGP OPEN message

Juniper JUNOSOn Juniper Networks products or platforms running Junos OS 12.1X46 prior to 12.1X46-D55, 12.1X47 pri…

Never miss a vulnerability like this again

Juniper JUNOSOn Juniper Networks products or platforms running Junos OS 12.1X46 prior to 12.1X46-D50, 12.1X47 pri…

Juniper JUNOSOn Juniper Networks products or platforms running Junos OS 11.4 prior to 11.4R13-S3, 12.1X46 prior t…

Juniper JUNOSJunos: IPv6 denial of service vulnerability due to resource exhaustion (CVE-2016-4921)

Juniper JUNOSJunos J-Web: Cross Site Scripting Vulnerability

Juniper JUNOSJuniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D30, 12.3 be…

Never miss a vulnerability like this again

Juniper JUNOSInput Validation

Juniper JUNOSThe rpd daemon in Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D45, 12.1X47 before 12…

Juniper JUNOSRace Condition

Juniper JUNOSJunos: vulnerabilities in J-Web (CVE-2016-1261)

Juniper JUNOSThe SSH server in Juniper Junos OS before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 12…

Never miss a vulnerability like this again

Juniper JUNOSBuffer Overflow

Juniper JUNOSNull Pointer Dereference

Juniper JUNOSJuniper Junos 11.4 before 11.4R8, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 be…

Juniper JUNOSJuniper Junos 11.4 before R12-S4, 12.1X44 before D35, 12.1X45 before D30, 12.1X46 before D25, 12.1X4…

Juniper JUNOSJuniper Junos 11.4 before R11, 12.1 before R9, 12.1X44 before D30, 12.1X45 before D20, 12.1X46 befor…

Never miss a vulnerability like this again

Juniper JUNOSJuniper Junos 11.4 before R12, 12.1 before R10, 12.1X44 before D35, 12.1X45 before D25, 12.1X46 befo…

Juniper JUNOSBuffer Overflow

Juniper JUNOSInput Validation

Juniper JUNOSRace Condition

Juniper JUNOSThe XNM command processor in Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before 12…

Never miss a vulnerability like this again

Company

Resources

Contact