Filters

Juniper JUNOSJunos OS: QFX5000 Series, EX4600 Series: In a VxLAN scenario an adjacent attacker within the VxLAN sending genuine packets may cause a DMA memory leak to occur.

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Malformed BGP flowspec update causes RPD crash

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An RPD crash can happen due to an MPLS TE tunnel configuration change on a directly connected router

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An FPC crash might be seen due to an EVPN MAC entry moving from local to remote

First published (updated )

Juniper JUNOSJunos OS: EX2300 and EX3400 Series: One of more SFPs might become unavailable when the system is very busy

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: QFX10000 Series: In IP/MPLS PHP node scenarios upon receipt of certain crafted packets multiple interfaces in LAG configurations may detach.

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An rpd crash can occur due to memory corruption caused by flapping BGP sessions

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Due to a race condition the rpd process can crash upon receipt of a BGP update message containing flow spec route

First published (updated )

Juniper JUNOSJunos OS: PTX Series and QFX10000 Series: 'Etherleak' memory disclosure in Ethernet padding data

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: In an MPLS scenario upon receipt of a specific IPv6 packet an FPC will crash

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: An rpd core will be observed with proxy BGP route-target filtering enabled and certain route add and delete event happening

7.5
First published (updated )

Juniper JUNOSJunos OS: EX4300: PFE Denial of Service (DoS) upon receipt of a flood of specific ARP traffic

First published (updated )

Juniper JUNOSJunos OS: SRX Series: Denial of service vulnerability in flowd daemon upon receipt of a specific fragmented packet

7.5
First published (updated )

Juniper JUNOSJunos OS: A XSS vulnerability allows an attacker to execute commands on a target J-Web session

8.8
First published (updated )

Juniper JUNOSJunos OS: J-Web can be compromised through reflected XSS attacks

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: EX2300 Series, EX2300-MP Series, EX3400 Series: A slow memory leak due to processing of specific IPv6 packets

7.5
First published (updated )

Juniper JUNOSJunos OS: jdhcpd crashes upon receiving a specific DHCP packet

First published (updated )

Juniper JUNOSJunos OS: QFX5000 Series, EX4600: Device may run out of memory, causing traffic loss, upon receipt of specific IPv6 packets

7.5
First published (updated )

Juniper JUNOSJunos OS: CRL failing to download causes a memory leak and ultimately a DoS

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An l2cpd memory leak can occur when specific LLDP packets are received leading to a DoS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: OSPFv3 session might go into INIT state upon receipt of multiple crafted packets from a trusted neighbor device.

First published (updated )

Juniper JUNOSJunos OS: MX104 might become unresponsive if the out-of-band management port receives a flood of traffic

7.5
First published (updated )

Juniper JUNOSJunos OS: MX Series: The bbe-smgd process crashes if an unsupported configuration exists and a PPPoE client sends a specific message

First published (updated )

Juniper JUNOSJunos OS: SRX Series: Traffic classification vulnerability when 'no-syn-check' is enabled

First published (updated )

Juniper JUNOSJunos OS: Certificate validation is skipped when fetching system scripts from a HTTPS URL

7.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: ACX5448: FPC memory leak due to IPv6 neighbor flaps

First published (updated )

Juniper JUNOSJunos Fusion: A Satellite Device can be controlled by rewiring it to a foreign AD causing a DoS

First published (updated )

Juniper JUNOSSRX Series and MX Series with SPC3: A high percentage of fragments might lead to high latency or packet drops

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: After receiving a specific number of crafted packets snmpd will segmentation fault (SIGSEGV) requiring a manual restart.

7.5
First published (updated )

Juniper JUNOSJunos OS: SRX Series: If no-syn-check is enabled, traffic classified as UNKNOWN gets permitted by pre-id-default-policy

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: In a scenario with dhcp-security and option-82 configured jdhcpd crashes upon receipt of a malformed DHCP packet

7.4
First published (updated )

Juniper JUNOSJunos OS: jdhcpd crashes upon receipt of a specific DHCPv6 packet

7.4
First published (updated )

Juniper JUNOSJunos OS: A low privileged user can elevate their privileges to the ones of the highest privileged j-web user logged in

7.8
First published (updated )

Juniper JUNOSJunos OS: When using J-Web with HTTP an attacker may retrieve encryption keys via Person-in-the-Middle attacks.

First published (updated )

Juniper JUNOSJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: An attacker sending spoofed RADIUS messages to a Junos OS device configured for broadband services may cause broadband subscribers to remain stuck in a "Terminating" state.

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: RPD crash while processing a specially crafted BGP UPDATE or KEEPALIVE message.

7.5
First published (updated )

Juniper JUNOSJunos OS: J-Web allows a locally authenticated attacker to escalate their privileges to root.

First published (updated )

Juniper JUNOSJunos OS: QFX5000 Series and EX4600 Series: Control traffic might be dropped if a high rate of specific multicast traffic is received

First published (updated )

Juniper JUNOSJunos OS: EX2300, EX3400 and EX4300 Series: An Aggregated Ethernet (AE) interface will go down due to a stream of specific layer 2 frames

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: SRX Series: The flowd process will crash if log session-close is configured and specific traffic is received

First published (updated )

Juniper JUNOSJunos OS: QFX Series and PTX Series: FPC resource usage increases when certain packets are processed which are being VXLAN encapsulated

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Denial of Service vulnerability in local file processing

7.1
First published (updated )

Juniper JUNOSJunos OS: EX2300 Series, EX3400 Series, and ACX710 might become unresponsive if the out-of-band management port receives a flood of traffic

7.8
First published (updated )

Juniper JUNOSJunos OS: Receipt of a specific BGP update may cause RPKI policy-checks to be bypassed

7.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: PTX1000 System, PTX10002-60C System: After upgrading, configured firewall filters may be applied on incorrect interfaces

First published (updated )

Juniper JUNOSJunos OS: PTX Series: An FPC heap memory leak will be triggered by certain Flowspec route operations which can lead to an FPC crash

First published (updated )

Juniper JUNOSJunos OS: SRX Series: Persistent XSS vulnerability in J-Web

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An IS-IS adjacency might be taken down if a bad hello PDU is received for an existing adjacency causing a DoS

First published (updated )

Juniper JUNOSJunos OS: A local authenticated attacker can cause RPD to core

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203