Filters

Juniper JUNOSJunos OS and Junos OS Evolved: RPD might crash when MPLS ping is performed on BGP LSPs

First published (updated )

Juniper JUNOSJunos OS: MX Series: An FPC crash might be seen due to mac-moves within the same bridge domain

First published (updated )

Juniper JUNOSJunos OS: QFX10000 Series: In IP/MPLS PHP node scenarios upon receipt of certain crafted packets multiple interfaces in LAG configurations may detach.

7.5
First published (updated )

Juniper JUNOSJunos OS: EX4300: PFE Denial of Service (DoS) upon receipt of a flood of specific ARP traffic

First published (updated )

Juniper JUNOSJunos OS: A XSS vulnerability allows an attacker to execute commands on a target J-Web session

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: OSPFv3 session might go into INIT state upon receipt of multiple crafted packets from a trusted neighbor device.

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: After receiving a specific number of crafted packets snmpd will segmentation fault (SIGSEGV) requiring a manual restart.

7.5
First published (updated )

Juniper JUNOSJunos OS: In a scenario with dhcp-security and option-82 configured jdhcpd crashes upon receipt of a malformed DHCP packet

7.4
First published (updated )

Juniper JUNOSJunos OS: jdhcpd crashes upon receipt of a specific DHCPv6 packet

7.4
First published (updated )

Juniper JUNOSJunos OS: A low privileged user can elevate their privileges to the ones of the highest privileged j-web user logged in

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: When using J-Web with HTTP an attacker may retrieve encryption keys via Person-in-the-Middle attacks.

First published (updated )

Juniper JUNOSJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root

8.8
First published (updated )

Juniper JUNOSJunos OS: EX2300, EX3400 and EX4300 Series: An Aggregated Ethernet (AE) interface will go down due to a stream of specific layer 2 frames

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Denial of Service vulnerability in local file processing

7.1
First published (updated )

Juniper JUNOSJunos OS: Receipt of a specific BGP update may cause RPKI policy-checks to be bypassed

7.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: A local authenticated attacker can cause RPD to core

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Local Privilege Escalation vulnerability

7.8
First published (updated )

Juniper JUNOSJunos OS: MX Series: In subscriber management / BBE configuration authd can crash if a subscriber with a specific username tries to login leading to a DoS

First published (updated )

Juniper JUNOSJunos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore)

7.8
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: A vulnerability allows a network based unauthenticated attacker which sends a high rate of specific traffic to cause a partial Denial of Service

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore)

7.8
First published (updated )

Juniper JUNOSJunos OS: RPD crash while processing a specific BGP UPDATE when Multipath or add-path features are enabled

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: LLDP Out-of-Bounds Read vulnerability in l2cpd

8.8
First published (updated )

Juniper JUNOSJunos OS: QFX5000 Series and EX4600 Series: Continuous traffic destined to a device configured with MC-LAG leading to nodes losing their control connection which can impact traffic

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Trio Chipset: Denial of Service due to packet destined to device's interfaces.

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: Denial of Service vulnerability in J-Web and web based (HTTP/HTTPS) services caused by a high number of specific requests

7.5
First published (updated )

Juniper JUNOSJunos OS: Remote code execution vulnerability in overlayd service

First published (updated )

Juniper JUNOSJunos OS: A race condition in the storm control profile may allow an attacker to cause a Denial of Service condition

7.4
First published (updated )

Juniper JUNOSJunos OS: EX4300-MP/EX4600/EX4650/QFX5K Series: Packet Forwarding Engine manager (FXPC) process crashes when deployed in a Virtual Chassis (VC) configuration

First published (updated )

Juniper JUNOSJunos OS: MX Series: DDoS LACP violation upon receipt of specific layer 2 frames in EVPN-VXLAN deployment

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: PTX Series, QFX Series: Due to a race condition input loopback firewall filters applied to interfaces may not operate even when listed in the running configuration.

First published (updated )

Juniper JUNOSJunos OS: J-Web: Cross-site scripting attack allows an attacker to gain control of another users session.

First published (updated )

Juniper JUNOSJunos OS: EX2200-C Series, EX3200 Series, EX3300 Series, EX4200 Series, EX4500 Series, EX4550 Series, EX6210 Series, EX8208 Series, EX8216 Series: Receipt of a crafted ARP packet by an adjacent attacker will cause the sfid process to core.

First published (updated )

Juniper JUNOSJunos OS: telnetd.real Local Privilege Escalation vulnerabilities in SUID binaries

7.8
First published (updated )

Juniper JUNOSJunos OS: Upon receipt of certain protocol packets with invalid payloads a self-propagating Denial of Service may occur.

7.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: Upon receipt of a specific BGP FlowSpec message network traffic may be disrupted.

First published (updated )

Juniper JUNOSJunos OS: EX and QFX5K Series: Storm Control does not work as expected when Redundant Trunk Group is configured

8.6
First published (updated )

Juniper JUNOSJunos OS: dexp Local Privilege Escalation vulnerabilities in SUID binaries

7.8
First published (updated )

Juniper JUNOSJunos OS: MX Series: MS-MPC/MIC might crash when processing malformed IPv6 packet in NAT64 configuration.

First published (updated )

Juniper JUNOSJunos OS: When a DHCPv6 Relay-Agent is configured upon receipt of a specific DHCPv6 client message, Remote Code Execution may occur.

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: jdhcpd process crash when forwarding a malformed DHCP packet.

First published (updated )

Juniper JUNOSJunos OS: EX Series: RPD crash when executing specific "show ospf interface" commands from the CLI with OSPF authentication configured

First published (updated )

Juniper JUNOSJunos OS: A race condition on receipt of crafted LLDP packets leads to a memory leak and an LLDP crash.

First published (updated )

Juniper JUNOSJuniper Junos OS Path Traversal Vulnerability

First published (updated )

Juniper JUNOSJunos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM connectivity fault management process (CFM) to core.

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: Privilege escalation vulnerability in dual REs, VC or HA cluster may allow unauthorized configuration change.

First published (updated )

Juniper JUNOSJunos OS: EX4300: Traffic from the network internal to the device (128.0.0.0) may be forwarded to egress interfaces

First published (updated )

Juniper JUNOSJunos OS: EX and QFX Series: Console port authentication bypass vulnerability

First published (updated )

Juniper JUNOSJunos OS: BGP session termination upon receipt of specific BGP FlowSpec advertisement.

8.6
First published (updated )

Juniper JUNOSBuffer Overflow

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203