Filters
Juniper JUNOSJunos OS: In a scenario with dhcp-security and option-82 configured jdhcpd crashes upon receipt of a malformed DHCP packet
7.4
First published (updated )
Juniper JUNOSJunos OS: A race condition in the storm control profile may allow an attacker to cause a Denial of Service condition
7.4
First published (updated )
Juniper JUNOSJunos OS: PTX Series, QFX Series: Due to a race condition input loopback firewall filters applied to interfaces may not operate even when listed in the running configuration.
6.8
First published (updated )
Juniper JUNOSJunos OS: Upon receipt of certain protocol packets with invalid payloads a self-propagating Denial of Service may occur.
7.4
First published (updated )
Juniper JUNOSJunos OS: EX Series, QFX Series, SRX Branch Series, MX Series: Memory leak in packet forwarding engine due to 802.1X authenticator port interface flaps
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: When a DHCPv6 Relay-Agent is configured upon receipt of a specific DHCPv6 client message, Remote Code Execution may occur.
8.8
First published (updated )
Juniper JUNOSJunos OS: jdhcpd process crash when forwarding a malformed DHCP packet.
5.3
First published (updated )
Juniper JUNOSJunos OS: EX Series: RPD crash when executing specific "show ospf interface" commands from the CLI with OSPF authentication configured
5.5
First published (updated )
Juniper JUNOSJuniper Junos OS Path Traversal Vulnerability
First published (updated )
Juniper JUNOSJunos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM connectivity fault management process (CFM) to core.
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: Privilege escalation vulnerability in dual REs, VC or HA cluster may allow unauthorized configuration change.
5.5
First published (updated )
Juniper JUNOSJunos OS: EX4300: Traffic from the network internal to the device (128.0.0.0) may be forwarded to egress interfaces
5.3
First published (updated )
Juniper JUNOSJunos OS: EX and QFX Series: Console port authentication bypass vulnerability
6.9
First published (updated )
Juniper JUNOSJunos OS: BGP session termination upon receipt of specific BGP FlowSpec advertisement.
8.6
First published (updated )
Juniper JUNOSJunos: QFX Series: Insufficient entropy on QFX3500 and QFX3600 platforms when the system boots up
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: Cross-Site Scripting (XSS) in J-Web
7.5
First published (updated )
Juniper JUNOSJunos OS: EX4300/EX4600/QFX3500/QFX5100 Series: Stateless IP firewall filter may fail to evaluate certain packets
6.5
First published (updated )
Juniper JUNOSJunos OS: Path traversal vulnerability in J-Web
8.1
First published (updated )
Juniper JUNOSJunos OS: vSRX, SRX1500, SRX4K, ACX5K, EX4600, QFX5100, QFX5110, QFX5200, QFX10K and NFX Series: console management port device authentication credentials are logged in clear text
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: Persistent XSS vulnerability in J-Web
8.8
First published (updated )
Juniper JUNOSJunos OS: Session fixation vulnerability in J-Web
8.8
First published (updated )
Juniper JUNOSEX4300 Series: When a firewall filter is applied to a loopback interface, other firewall filters for multicast traffic may fail
5.8
First published (updated )
Juniper JUNOSJunos OS: Insufficient validation of environment variables in telnet client may lead to stack-based buffer overflow
7.8
First published (updated )
Juniper JUNOSJunos OS: Login credentials are vulnerable to brute force attacks through the REST API
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: RPD process crashes upon receipt of a specific SNMP packet
7.5
First published (updated )
Juniper JUNOSJunos OS: Firewall filter terms named "internal-1" and "internal-2" being ignored
9.8
First published (updated )
Juniper JUNOSQFX5000 Series, EX4300, EX4600: A stack buffer overflow vulnerability in Packet Forwarding Engine manager (FXPC) process
9.8
First published (updated )
Juniper JUNOSOn EX2300, EX3400, EX4600, QFX3K and QFX5K series, firewall filter configuration cannot perform pack…
5.3
First published (updated )
Juniper JUNOSJunos OS: rpd crash on VPLS PE upon receipt of specific BGP message
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: A flowspec BGP update with a specific term-order causes routing protocol daemon (rpd) process to crash with a core.
7.5
First published (updated )
Juniper JUNOSJunos OS: EX, QFX and MX series: Packet Forwarding Engine manager (FXPC) process crashes due to a crafted HTTP packet in a Virtual Chassis configuration
9.8
First published (updated )
Juniper JUNOSJunos OS: Invalid IP/mask learned from DHCP server might cause device control daemon (dcd) process crash
5.9
First published (updated )
Juniper JUNOSJunos OS: Receipt of a malformed MPLS RSVP packet leads to a Routing Protocols Daemon (RPD) crash.
7.5
First published (updated )
Juniper JUNOSQFX5000/EX4600 Series: Routing protocol flap upon receipt of high rate of Ethernet frames
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: Unauthenticated remote root access possible when RSH service is enabled
9.3
First published (updated )
Juniper JUNOSJunos OS: RPD daemon crashes upon receipt of specific MPLS packet
8.8
First published (updated )
Juniper JUNOSJunos OS: Receipt of specially crafted UDP packets over MPLS may bypass stateless IP firewall rules
5.9
First published (updated )
Juniper JUNOSJunos OS: A privilege escalation vulnerability exists where authenticated users with shell access can become root
7.8
First published (updated )
Juniper JUNOSJunos OS: A malicious crafted IPv6 DHCP packet may cause the JDHCPD daemon to core
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos: Denial of service vulnerability in SNMP MIB-II subagent daemon (mib2d).
5.9
First published (updated )
Juniper JUNOSJunos OS: Short MacSec keys may allow man-in-the-middle attacks.
8.8
First published (updated )
Juniper JUNOSJunos OS: Mbuf leak due to processing MPLS packets in VPLS network.
7.8
First published (updated )
Juniper JUNOSJunos OS: rpd daemon cores due to malformed BGP UPDATE packet
7.8
First published (updated )
Juniper JUNOSSecurity Bulletin: Junos OS: MAC move limit configured to drop traffic may forward traffic.
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSBuffer Overflow, Command Injection, Code Injection
10
First published (updated )
Juniper JUNOSJunos OS: commit script may allow unauthenticated root login upon reboot
7.2
First published (updated )
Juniper JUNOSJunos OS: Kernel Denial of Service Vulnerability
7.1
First published (updated )
Juniper JUNOSJunos: Unauthenticated Remote Code Execution through J-Web interface
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.