Filters

Juniper JUNOSJunos OS and Junos OS Evolved: Malformed BGP flowspec update causes RPD crash

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An rpd core will be observed with proxy BGP route-target filtering enabled and certain route add and delete event happening

7.5
First published (updated )

Juniper JUNOSJunos OS: SRX Series: Denial of service vulnerability in flowd daemon upon receipt of a specific fragmented packet

7.5
First published (updated )

Juniper JUNOSJunos OS: A XSS vulnerability allows an attacker to execute commands on a target J-Web session

8.8
First published (updated )

Juniper JUNOSJunos OS: J-Web can be compromised through reflected XSS attacks

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: QFX5000 Series, EX4600: Device may run out of memory, causing traffic loss, upon receipt of specific IPv6 packets

7.5
First published (updated )

Juniper JUNOSJunos OS: CRL failing to download causes a memory leak and ultimately a DoS

7.5
First published (updated )

Juniper JUNOSJunos OS: MX104 might become unresponsive if the out-of-band management port receives a flood of traffic

7.5
First published (updated )

Juniper JUNOSSRX Series and MX Series with SPC3: A high percentage of fragments might lead to high latency or packet drops

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: After receiving a specific number of crafted packets snmpd will segmentation fault (SIGSEGV) requiring a manual restart.

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: In a scenario with dhcp-security and option-82 configured jdhcpd crashes upon receipt of a malformed DHCP packet

7.4
First published (updated )

Juniper JUNOSJunos OS: A low privileged user can elevate their privileges to the ones of the highest privileged j-web user logged in

7.8
First published (updated )

Juniper JUNOSJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root

8.8
First published (updated )

Juniper JUNOSJunos OS: MX Series: MPC 7/8/9/10/11 cards with MAP-E: PFE halts when an attacker sends malformed IPv4 or IPv6 traffic inside the MAP-E tunnel.

7.5
First published (updated )

Juniper JUNOSJunos OS: An attacker sending spoofed RADIUS messages to a Junos OS device configured for broadband services may cause broadband subscribers to remain stuck in a "Terminating" state.

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: RPD crash while processing a specially crafted BGP UPDATE or KEEPALIVE message.

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Denial of Service vulnerability in local file processing

7.1
First published (updated )

Juniper JUNOSJunos OS: Stored Cross-Site Scripting (XSS) vulnerability in captive portal

First published (updated )

Juniper JUNOSJunos OS: EX2300 Series, EX3400 Series, and ACX710 might become unresponsive if the out-of-band management port receives a flood of traffic

7.8
First published (updated )

Juniper JUNOSJunos OS: Receipt of a specific BGP update may cause RPKI policy-checks to be bypassed

7.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: SRX Series: Persistent XSS vulnerability in J-Web

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Local Privilege Escalation vulnerability

7.8
First published (updated )

Juniper JUNOSJunos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore)

7.8
First published (updated )

Juniper JUNOSJunos OS: RPD crash while processing a specific BGP UPDATE when Multipath or add-path features are enabled

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Specific packets can trigger rpd crash when BGP Origin Validation is configured with RPKI

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: QFX5000 Series and EX4600 Series: Continuous traffic destined to a device configured with MC-LAG leading to nodes losing their control connection which can impact traffic

7.5
First published (updated )

Juniper JUNOSJunos OS: PTX Series, QFX10K Series: Upon receipt of specific packets BFD sessions might flap due to DDoS policer implementation in Packet Forwarding Engine

7.5
First published (updated )

Juniper JUNOSJunos OS: Denial of Service vulnerability in J-Web and web based (HTTP/HTTPS) services caused by a high number of specific requests

7.5
First published (updated )

Juniper JUNOSJunos OS: Kernel panic upon receipt of specific TCPv6 packet on management interface

7.1
First published (updated )

Juniper JUNOSJunos OS: NFX Series: Local Code Execution Vulnerability in JDMD Leads to Privilege Escalation

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: NFX Series: Local Command Execution Vulnerability in JDMD Leads to Privilege Escalation

7.8
First published (updated )

Juniper JUNOSJunos OS: MX Series with MS-PIC, MS-SPC3, MS-MIC or MS-MPC: The BRAS Subscriber Services service activation portal is vulnerable to a Denial of Service (DoS) via malformed HTTP packets

8.6
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An attacker sending a specific crafted BGP update message will crash RPD

7.5
First published (updated )

Juniper JUNOSJunos OS: SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with SPC2/SPC3: In a multi-tenant environment, a tenant host administrator may be able to jailbreak out of their network impacting other tenant networks or gather information from other networks.

7.3
First published (updated )

Juniper JUNOSJunos OS: Junos Fusion: Hard-coded credentials on satellite devices allows a locally authenticated attacker to elevate their privileges.

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: A race condition in the storm control profile may allow an attacker to cause a Denial of Service condition

7.4
First published (updated )

Juniper JUNOSJunos OS: SRX Series: Memory leak when querying Aggregated Ethernet (AE) interface statistics

7.5
First published (updated )

Juniper JUNOSJunos OS: SRX Series: Denial of Service in J-Web upon receipt of crafted HTTP packets

7.5
First published (updated )

Juniper JUNOSJunos OS: SNMP fails to properly perform authorization checks on incoming received SNMP requests.

7.5
First published (updated )

Juniper JUNOSJunos OS: Receipt of malformed DHCPv6 packets causes jdhcpd to crash and restart.

7.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: J-Web can be compromised through reflected client-side HTTP parameter pollution attacks.

8.8
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: QFX5K Series: Underlay network traffic might not be processed upon receipt of high rate of specific genuine overlay packets in VXLAN scenario

7.4
First published (updated )

Juniper JUNOSJunos OS: Receipt of specific DHCPv6 packet may cause jdhcpd to crash and restart

7.4
First published (updated )

Juniper JUNOSJunos OS: SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with SPC2/SPC3, vSRX Series: In a multi-tenant environment, a tenant host administrator may configure logical firewall isolation affecting other tenant networks

7.3
First published (updated )

Juniper JUNOSJunos OS: ethtraceroute Local Privilege Escalation vulnerability in SUID binaries

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: telnetd.real Local Privilege Escalation vulnerabilities in SUID binaries

7.8
First published (updated )

Juniper JUNOSJunos OS: Upon receipt of certain protocol packets with invalid payloads a self-propagating Denial of Service may occur.

7.4
First published (updated )

Juniper JUNOSJunos OS: Command injection vulnerability in license-check daemon

7.8
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: In bidirectional LSP configurations, on MPLS egress router RPD may core upon receipt of specific malformed RSVP packet.

8.8
First published (updated )

Juniper JUNOSJunos OS: NFX Series, SRX Series: PFE may crash upon receipt of specific packet when SSL Proxy is configured.

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203