Filters

Juniper JUNOSJunos OS: QFX5000 Series, EX4600 Series: In a VxLAN scenario an adjacent attacker within the VxLAN sending genuine packets may cause a DMA memory leak to occur.

First published (updated )

Juniper JUNOSJunos OS: MX Series: An MPC will crash upon receipt of a malformed CFM packet.

First published (updated )

Juniper JUNOSJunos OS: MX Series: The FPC will crash on receiving a malformed CFM packet

First published (updated )

Juniper JUNOSAn Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Network…

7.5
First published (updated )

Juniper JUNOSJunos OS: SRX Series: Policies that rely on JDPI-Decoder actions may fail open

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: Malformed BGP flowspec update causes RPD crash

7.5
First published (updated )

Juniper JUNOSJunos OS: NFX Series: 'set system ports console insecure' allows root password recovery

First published (updated )

Juniper JUNOSJunos OS: MX Series: If a specific traffic rate goes above the DDoS threshold it will lead to an FPC crash

7.5
First published (updated )

Juniper JUNOSJunos OS: SRX Series: The flow processing daemon (flowd) will crash when Unified Policies are used with IPv6 and certain dynamic applications are rejected by the device

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An RPD crash can happen due to an MPLS TE tunnel configuration change on a directly connected router

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: An FPC crash might be seen due to an EVPN MAC entry moving from local to remote

First published (updated )

Juniper JUNOSJunos OS: MX Series: An FPC crash might be seen due to mac-moves within the same bridge domain

First published (updated )

Juniper JUNOSJunos OS: PHP file inclusion vulnerability in J-Web

8.8
First published (updated )

Juniper JUNOSJunos OS: Path traversal vulnerability in J-Web

First published (updated )

Juniper JUNOSJunos OS: Unauthenticated XPath Injection vulnerability in J-Web

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: XPath Injection vulnerability in J-Web

First published (updated )

Juniper JUNOSJunos OS: Cross-site Scripting (XSS) vulnerability in J-Web

First published (updated )

Juniper JUNOSJunos OS: Vulnerability in J-Web may allow deserialization without authentication

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: The rpd process will crash when a malformed incoming RESV message is processed

First published (updated )

Juniper JUNOSJunos OS: EX2300 and EX3400 Series: One of more SFPs might become unavailable when the system is very busy

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: In a BGP multipath scenario, when one of the contributing routes is flapping often and rapidly, rpd may crash

First published (updated )

Juniper JUNOSJunos OS: QFX10000 Series: In IP/MPLS PHP node scenarios upon receipt of certain crafted packets multiple interfaces in LAG configurations may detach.

7.5
First published (updated )

Juniper JUNOSJunos OS: SRX Series: Upon processing of a genuine packet the pkid process will crash during CMPv2 auto-re-enrollment

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: PPMD goes into infinite loop upon receipt of malformed OSPF TLV

First published (updated )

Juniper JUNOSJunos OS: EX4300-MP, EX4600, QFX5000 Series: In VxLAN scenarios specific packets processed cause a memory leak leading to a PFE crash

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: RPD crash upon receipt of specific OSPFv3 LSAs

First published (updated )

Juniper JUNOSJunos OS: QFX10K Series: Denial of Service (DoS) upon receipt of crafted MLD packets on multi-homing ESI in VXLAN

First published (updated )

Juniper JUNOSJunos OS: PTX Series and QFX10000 Series: 'Etherleak' memory disclosure in Ethernet padding data

First published (updated )

Juniper JUNOSJunos OS: PTX Series: FPCs may restart unexpectedly upon receipt of specific MPLS packets with certain multi-unit interface configurations

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: /var/run/<pid>.env files are potentially not deleted during termination of a gRPC connection causing inode exhaustion

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: In an MPLS scenario upon receipt of a specific IPv6 packet an FPC will crash

First published (updated )

Juniper JUNOSJunos OS: SRX and EX Series: Local privilege escalation flaw in "download" functionality

7.8
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An rpd core will be observed with proxy BGP route-target filtering enabled and certain route add and delete event happening

7.5
First published (updated )

Juniper JUNOSJunos OS: EX4300: PFE Denial of Service (DoS) upon receipt of a flood of specific ARP traffic

First published (updated )

Juniper JUNOSJunos OS: EX4650 Series: Certain traffic received by the Junos OS device on the management interface may be forwarded to egress interfaces instead of discarded

7.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS: SRX Series: Denial of service vulnerability in flowd daemon upon receipt of a specific fragmented packet

7.5
First published (updated )

Juniper JUNOSJunos OS: J-Web can be compromised through reflected XSS attacks

First published (updated )

Juniper JUNOSJunos OS: vMX and MX150: Specific packets might cause a memory leak and eventually an FPC reboot

First published (updated )

Juniper JUNOSJunos OS: Certificate validation is skipped when fetching system scripts from a HTTPS URL

7.4
First published (updated )

Juniper JUNOSJunos OS: ACX5448: FPC memory leak due to IPv6 neighbor flaps

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: After receiving a specific number of crafted packets snmpd will segmentation fault (SIGSEGV) requiring a manual restart.

7.5
First published (updated )

Juniper JUNOSJunos OS: jdhcpd crashes upon receipt of a specific DHCPv6 packet

7.4
First published (updated )

Juniper JUNOSJunos OS: A low privileged user can elevate their privileges to the ones of the highest privileged j-web user logged in

7.8
First published (updated )

Juniper JUNOSJunos OS: When using J-Web with HTTP an attacker may retrieve encryption keys via Person-in-the-Middle attacks.

First published (updated )

Juniper JUNOSJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: In Point to MultiPoint (P2MP) scenarios receipt of various crafted packets causes RPD to core.

7.5
First published (updated )

Juniper JUNOSJunos OS: An attacker sending spoofed RADIUS messages to a Junos OS device configured for broadband services may cause broadband subscribers to remain stuck in a "Terminating" state.

7.5
First published (updated )

Juniper JUNOSJunos OS: J-Web allows a locally authenticated attacker to escalate their privileges to root.

First published (updated )

Juniper JUNOSJunos OS: QFX5000 Series and EX4600 Series: Control traffic might be dropped if a high rate of specific multicast traffic is received

First published (updated )

Juniper JUNOSJunos OS: EX2300, EX3400 and EX4300 Series: An Aggregated Ethernet (AE) interface will go down due to a stream of specific layer 2 frames

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203