Filters

Juniper JUNOSJunos OS: QFX5000 Series, EX4600 Series: In a VxLAN scenario an adjacent attacker within the VxLAN sending genuine packets may cause a DMA memory leak to occur.

First published (updated )

Juniper JUNOSJunos OS: MX Series: An MPC will crash upon receipt of a malformed CFM packet.

First published (updated )

Juniper JUNOSJunos OS: MX Series: The FPC will crash on receiving a malformed CFM packet

First published (updated )

Juniper JUNOSJunos OS: MX Series: PFE crash upon receipt of specific packet destined to an AMS interface

7.5
First published (updated )

Juniper JUNOSJunos OS: SRX Series: Policies that rely on JDPI-Decoder actions may fail open

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: Malformed BGP flowspec update causes RPD crash

7.5
First published (updated )

Juniper JUNOSJunos OS: QFX10002: PFE wedges and restarts upon receipt of specific malformed packets

First published (updated )

Juniper JUNOSJunos OS: MX Series: If a specific traffic rate goes above the DDoS threshold it will lead to an FPC crash

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: RPD might crash when MPLS ping is performed on BGP LSPs

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An FPC crash might be seen due to an EVPN MAC entry moving from local to remote

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: MX Series: An FPC crash might be seen due to mac-moves within the same bridge domain

First published (updated )

Juniper JUNOSJunos OS: PHP file inclusion vulnerability in J-Web

8.8
First published (updated )

Juniper JUNOSJunos OS: Path traversal vulnerability in J-Web

First published (updated )

Juniper JUNOSJunos OS: Unauthenticated XPath Injection vulnerability in J-Web

First published (updated )

Juniper JUNOSJunos OS: XPath Injection vulnerability in J-Web

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: Cross-site Scripting (XSS) vulnerability in J-Web

First published (updated )

Juniper JUNOSJunos OS: Vulnerability in J-Web may allow deserialization without authentication

First published (updated )

Juniper JUNOSJunos OS: EX2300 and EX3400 Series: One of more SFPs might become unavailable when the system is very busy

First published (updated )

Juniper JUNOSJunos OS: QFX10000 Series: In IP/MPLS PHP node scenarios upon receipt of certain crafted packets multiple interfaces in LAG configurations may detach.

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An rpd crash can occur due to memory corruption caused by flapping BGP sessions

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: SRX Series: Upon processing of a genuine packet the pkid process will crash during CMPv2 auto-re-enrollment

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: PPMD goes into infinite loop upon receipt of malformed OSPF TLV

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Due to a race condition the rpd process can crash upon receipt of a BGP update message containing flow spec route

First published (updated )

Juniper JUNOSJunos OS: EX4300-MP, EX4600, QFX5000 Series: In VxLAN scenarios specific packets processed cause a memory leak leading to a PFE crash

First published (updated )

Juniper JUNOSJunos OS: QFX10K Series: Denial of Service (DoS) upon receipt of crafted MLD packets on multi-homing ESI in VXLAN

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: PTX Series and QFX10000 Series: 'Etherleak' memory disclosure in Ethernet padding data

First published (updated )

Juniper JUNOSJunos OS: PTX Series: FPCs may restart unexpectedly upon receipt of specific MPLS packets with certain multi-unit interface configurations

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: /var/run/<pid>.env files are potentially not deleted during termination of a gRPC connection causing inode exhaustion

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: In an MPLS scenario upon receipt of a specific IPv6 packet an FPC will crash

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An rpd core will be observed with proxy BGP route-target filtering enabled and certain route add and delete event happening

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: EX4300: PFE Denial of Service (DoS) upon receipt of a flood of specific ARP traffic

First published (updated )

Juniper JUNOSJunos OS: EX4650 Series: Certain traffic received by the Junos OS device on the management interface may be forwarded to egress interfaces instead of discarded

7.2
First published (updated )

Juniper JUNOSJunos OS: SRX Series: Denial of service vulnerability in flowd daemon upon receipt of a specific fragmented packet

7.5
First published (updated )

Juniper JUNOSJunos OS: A XSS vulnerability allows an attacker to execute commands on a target J-Web session

8.8
First published (updated )

Juniper JUNOSJunos OS: J-Web can be compromised through reflected XSS attacks

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: QFX5000 Series, EX4600: Device may run out of memory, causing traffic loss, upon receipt of specific IPv6 packets

7.5
First published (updated )

Juniper JUNOSJunos OS: CRL failing to download causes a memory leak and ultimately a DoS

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: OSPFv3 session might go into INIT state upon receipt of multiple crafted packets from a trusted neighbor device.

First published (updated )

Juniper JUNOSJunos OS: MX104 might become unresponsive if the out-of-band management port receives a flood of traffic

7.5
First published (updated )

Juniper JUNOSJunos OS: MX Series: The bbe-smgd process crashes if an unsupported configuration exists and a PPPoE client sends a specific message

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: An attacker sending crafted packets can cause a traffic and CPU Denial of Service (DoS).

7.5
First published (updated )

Juniper JUNOSJunos OS: Certificate validation is skipped when fetching system scripts from a HTTPS URL

7.4
First published (updated )

Juniper JUNOSJunos OS: ACX5448: FPC memory leak due to IPv6 neighbor flaps

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: After receiving a specific number of crafted packets snmpd will segmentation fault (SIGSEGV) requiring a manual restart.

7.5
First published (updated )

Juniper JUNOSJunos OS: SRX Series: If no-syn-check is enabled, traffic classified as UNKNOWN gets permitted by pre-id-default-policy

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: In a scenario with dhcp-security and option-82 configured jdhcpd crashes upon receipt of a malformed DHCP packet

7.4
First published (updated )

Juniper JUNOSJunos OS: jdhcpd crashes upon receipt of a specific DHCPv6 packet

7.4
First published (updated )

Juniper JUNOSJunos OS: A low privileged user can elevate their privileges to the ones of the highest privileged j-web user logged in

7.8
First published (updated )

Juniper JUNOSJunos OS: When using J-Web with HTTP an attacker may retrieve encryption keys via Person-in-the-Middle attacks.

First published (updated )

Juniper JUNOSJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203