Filters
Juniper JUNOSJunos OS and Junos OS Evolved: RPD might crash when MPLS ping is performed on BGP LSPs
5.5
First published (updated )
Juniper JUNOSJunos OS: MX Series: An FPC crash might be seen due to mac-moves within the same bridge domain
6.5
First published (updated )
Juniper JUNOSJunos OS: QFX10000 Series: In IP/MPLS PHP node scenarios upon receipt of certain crafted packets multiple interfaces in LAG configurations may detach.
7.5
First published (updated )
Juniper JUNOSJunos OS and Junos OS Evolved: In an MPLS scenario upon receipt of a specific IPv6 packet an FPC will crash
6.5
First published (updated )
Juniper JUNOSJunos OS: EX4300: PFE Denial of Service (DoS) upon receipt of a flood of specific ARP traffic
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: A XSS vulnerability allows an attacker to execute commands on a target J-Web session
8.8
First published (updated )
Juniper JUNOSJunos OS and Junos OS Evolved: OSPFv3 session might go into INIT state upon receipt of multiple crafted packets from a trusted neighbor device.
5.9
First published (updated )
Juniper JUNOSJunos OS and Junos OS Evolved: After receiving a specific number of crafted packets snmpd will segmentation fault (SIGSEGV) requiring a manual restart.
7.5
First published (updated )
Juniper JUNOSJunos OS: In a scenario with dhcp-security and option-82 configured jdhcpd crashes upon receipt of a malformed DHCP packet
7.4
First published (updated )
Juniper JUNOSJunos OS: jdhcpd crashes upon receipt of a specific DHCPv6 packet
7.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: A low privileged user can elevate their privileges to the ones of the highest privileged j-web user logged in
7.8
First published (updated )
Juniper JUNOSJunos OS: When using J-Web with HTTP an attacker may retrieve encryption keys via Person-in-the-Middle attacks.
5.9
First published (updated )
Juniper JUNOSJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root
8.8
First published (updated )
Juniper JUNOSJunos OS: EX2300, EX3400 and EX4300 Series: An Aggregated Ethernet (AE) interface will go down due to a stream of specific layer 2 frames
6.5
First published (updated )
Juniper JUNOSJunos OS and Junos OS Evolved: Denial of Service vulnerability in local file processing
7.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: Receipt of a specific BGP update may cause RPKI policy-checks to be bypassed
7.2
First published (updated )
Juniper JUNOSJunos OS: A local authenticated attacker can cause RPD to core
5.5
First published (updated )
Juniper JUNOSJunos OS and Junos OS Evolved: Local Privilege Escalation vulnerability
7.8
First published (updated )
Juniper JUNOSJunos OS: MX Series: In subscriber management / BBE configuration authd can crash if a subscriber with a specific username tries to login leading to a DoS
6.5
First published (updated )
Juniper JUNOSJunos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore)
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS and Junos OS Evolved: A vulnerability allows a network based unauthenticated attacker which sends a high rate of specific traffic to cause a partial Denial of Service
6.5
First published (updated )
Juniper JUNOSJunos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore)
7.8
First published (updated )
Juniper JUNOSJunos OS: RPD crash while processing a specific BGP UPDATE when Multipath or add-path features are enabled
7.5
First published (updated )
Juniper JUNOSJunos OS and Junos OS Evolved: LLDP Out-of-Bounds Read vulnerability in l2cpd
8.8
First published (updated )
Juniper JUNOSJunos OS: QFX5000 Series and EX4600 Series: Continuous traffic destined to a device configured with MC-LAG leading to nodes losing their control connection which can impact traffic
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS and Junos OS Evolved: Trio Chipset: Denial of Service due to packet destined to device's interfaces.
5.3
First published (updated )
Juniper JUNOSJunos OS: Denial of Service vulnerability in J-Web and web based (HTTP/HTTPS) services caused by a high number of specific requests
7.5
First published (updated )
Juniper JUNOSJunos OS: Remote code execution vulnerability in overlayd service
9.8
First published (updated )
Juniper JUNOSJunos OS: A race condition in the storm control profile may allow an attacker to cause a Denial of Service condition
7.4
First published (updated )
Juniper JUNOSJunos OS: EX4300-MP/EX4600/EX4650/QFX5K Series: Packet Forwarding Engine manager (FXPC) process crashes when deployed in a Virtual Chassis (VC) configuration
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: MX Series: DDoS LACP violation upon receipt of specific layer 2 frames in EVPN-VXLAN deployment
6.5
First published (updated )
Juniper JUNOSJunos OS: PTX Series, QFX Series: Due to a race condition input loopback firewall filters applied to interfaces may not operate even when listed in the running configuration.
6.8
First published (updated )
Juniper JUNOSJunos OS: J-Web: Cross-site scripting attack allows an attacker to gain control of another users session.
9.3
First published (updated )
Juniper JUNOSJunos OS: EX2200-C Series, EX3200 Series, EX3300 Series, EX4200 Series, EX4500 Series, EX4550 Series, EX6210 Series, EX8208 Series, EX8216 Series: Receipt of a crafted ARP packet by an adjacent attacker will cause the sfid process to core.
6.5
First published (updated )
Juniper JUNOSJunos OS: telnetd.real Local Privilege Escalation vulnerabilities in SUID binaries
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: Upon receipt of certain protocol packets with invalid payloads a self-propagating Denial of Service may occur.
7.4
First published (updated )
Juniper JUNOSJunos OS and Junos OS Evolved: Upon receipt of a specific BGP FlowSpec message network traffic may be disrupted.
10
First published (updated )
Juniper JUNOSJunos OS: EX and QFX5K Series: Storm Control does not work as expected when Redundant Trunk Group is configured
8.6
First published (updated )
Juniper JUNOSJunos OS: dexp Local Privilege Escalation vulnerabilities in SUID binaries
7.8
First published (updated )
Juniper JUNOSJunos OS: MX Series: MS-MPC/MIC might crash when processing malformed IPv6 packet in NAT64 configuration.
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: When a DHCPv6 Relay-Agent is configured upon receipt of a specific DHCPv6 client message, Remote Code Execution may occur.
8.8
First published (updated )
Juniper JUNOSJunos OS: jdhcpd process crash when forwarding a malformed DHCP packet.
5.3
First published (updated )
Juniper JUNOSJunos OS: EX Series: RPD crash when executing specific "show ospf interface" commands from the CLI with OSPF authentication configured
5.5
First published (updated )
Juniper JUNOSJunos OS: A race condition on receipt of crafted LLDP packets leads to a memory leak and an LLDP crash.
6.5
First published (updated )
Juniper JUNOSJuniper Junos OS Path Traversal Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM connectivity fault management process (CFM) to core.
7.5
First published (updated )
Juniper JUNOSJunos OS: Privilege escalation vulnerability in dual REs, VC or HA cluster may allow unauthorized configuration change.
5.5
First published (updated )
Juniper JUNOSJunos OS: EX4300: Traffic from the network internal to the device (128.0.0.0) may be forwarded to egress interfaces
5.3
First published (updated )
Juniper JUNOSJunos OS: EX and QFX Series: Console port authentication bypass vulnerability
6.9
First published (updated )
Juniper JUNOSJunos OS: BGP session termination upon receipt of specific BGP FlowSpec advertisement.
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.