Filters
Software
juniper junos
49
juniper junos space
10
juniper srx550
8
juniper srx5600
8
juniper srx5800
8
juniper srx5400
7
juniper ex2300
6
juniper ex3400
6
juniper ex4300
6
juniper ex4600
6
juniper srx1500
6
juniper srx300
6
juniper srx4100
6
juniper srx4200
6
juniper srx4600
6
juniper contrail service orchestration
5
juniper ex4200
5
juniper ex4650
5
juniper srx100
5
juniper srx110
5
juniper srx1400
5
juniper srx210
5
juniper srx220
5
juniper srx240
5
juniper srx320
5
juniper srx340
5
juniper srx3400
5
juniper srx345
5
juniper srx3600
5
juniper srx380
5
juniper srx650
5
juniper ex2300-c
4
juniper ex3300
4
juniper ex4500
4
juniper ex4550
4
juniper nfx250
4
juniper ex2200
3
juniper ex2200-c
3
juniper ex3200
3
juniper ex3300-vc
3
juniper ex4200-vc
3
juniper ex4300-vc
3
juniper ex4300m
3
juniper ex4400
3
juniper ex4500-vc
3
juniper ex4550-vc
3
juniper ex4600-vc
3
juniper ex6200
3
juniper ex6210
3
juniper ex8200
3
juniper ex8200-vc
3
juniper ex8208
3
juniper ex8216
3
juniper ex9200
3
juniper ex9204
3
juniper ex9208
3
juniper ex9214
3
juniper ex9250
3
juniper ex9251
3
juniper ex9253
3
juniper nfx150
3
juniper qfx5110
3
juniper qfx5200
3
juniper screenos
3
juniper srx240h2
3
juniper srx4000
3
juniper srx5000
3
juniper srx550 hm
3
juniper srx550m
3
juniper advanced threat prevention
2
juniper appformix
2
juniper atp400
2
juniper atp700
2
juniper ex2200-vc
2
juniper ex2300m
2
juniper ex4300-24p
2
juniper ex4300-24p-s
2
juniper ex4300-24t
2
juniper ex4300-24t-s
2
juniper ex4300-32f
2
juniper ex4300-32f-dc
2
juniper ex4300-32f-s
2
juniper ex4300-48mp
2
juniper ex4300-48mp-s
2
juniper ex4300-48p
2
juniper ex4300-48p-s
2
juniper ex4300-48t
2
juniper ex4300-48t-afi
2
juniper ex4300-48t-dc
2
juniper ex4300-48t-dc-afi
2
juniper ex4300-48t-s
2
juniper ex4300-48tafi
2
juniper ex4300-48tdc
2
juniper ex4300-48tdc-afi
2
juniper ex4300-mp
2
juniper ex4550\/vc
2
juniper junos os
2
juniper junos os evolved
2
juniper networks ex series switch
2
juniper networks srx series firewall
2
juniper northstar controller
2
juniper qfx10002
2
juniper qfx5100
2
juniper qfx5120
2
juniper session and resource control
2
juniper vmx
2
juniper 128 technology session smart router
1
juniper 128 technology session smart router firmware
1
juniper csrx
1
juniper ex rps
1
juniper ex2300-24mp
1
juniper ex2300-24p
1
juniper ex2300-24t
1
juniper ex2300-48mp
1
juniper ex2300-48p
1
juniper ex2300-48t
1
juniper http service
1
juniper jnos
1
juniper jsa1500
1
juniper junos space ja1500 appliance
1
juniper junos space ja2500 appliance
1
juniper junose
1
juniper mx10
1
juniper mx10003
1
juniper mx10008
1
juniper mx104
1
juniper mx150
1
juniper mx2008
1
juniper mx2010
1
juniper mx2020
1
juniper mx204
1
juniper mx240
1
juniper mx40
1
juniper mx480
1
juniper mx5
1
juniper mx80
1
juniper mx960
1
juniper network and security manager software
1
juniper nfx350
1
juniper nsm3000
1
juniper nsmexpress
1
juniper odyssey access client
1
juniper ptx1000
1
juniper ptx10002-60c
1
juniper qfx10000
1
juniper qfx10008
1
juniper qfx10016
1
juniper qfx3500
1
juniper qfx3600
1
juniper qfx5200-32c
1
juniper qfx5200-48y
1
juniper qfx5210
1
juniper qfx5210-64c
1
juniper security threat response manager
1
juniper src pe
1
juniper srx240m
1
juniper steel-belted radius carrier
1
Juniper JUNOSJunos OS: SRX Series and EX Series: Security Vulnerability in J-web allows a preAuth Remote Code Execution
9.8
EPSS
0.26%
First published (updated )
Juniper JUNOSJunos OS: EX and SRX Series: A PHP vulnerability in J-Web allows an unauthenticated to control an important environment variable
First published (updated )
Juniper JUNOSJunos OS: Unauthenticated access vulnerability in J-Web
9.8
First published (updated )
Juniper JUNOSJunos OS: Vulnerability in J-Web may allow deserialization without authentication
9.8
First published (updated )
Juniper Security Threat Response ManagerApache Commons Text prior to 1.10.0 allows RCE when applied to untrusted input due to insecure interpolation defaults
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: SRX Series: Traffic classification vulnerability when 'no-syn-check' is enabled
9.3
First published (updated )
Juniper JUNOSJunos OS: SRX Series: If no-syn-check is enabled, traffic classified as UNKNOWN gets permitted by pre-id-default-policy
9.8
First published (updated )
Juniper JUNOSJunos OS: SRX Series: Under a specific device configuration an attacker can access the devices J-Web management services from any interface, regardless of security settings protecting the service
10
First published (updated )
Juniper Session and Resource ControlSRC Series: A remote attacker sending a specially crafted query may cause the web server to delete files
9.1
First published (updated )
Juniper JUNOSJunos OS: J-Web allows a locally authenticated attacker to escalate their privileges to root.
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS and Junos OS Evolved: Privilege escalation vulnerability in Juniper Extension Toolkit (JET)
First published (updated )
Juniper JUNOSJunos OS: PTX1000 System, PTX10002-60C System: After upgrading, configured firewall filters may be applied on incorrect interfaces
First published (updated )
Juniper 128 Technology Session Smart Router FirmwareSession Smart Router: Authentication Bypass Vulnerability
9.8
First published (updated )
Juniper Steel-belted Radius CarrierSteel-Belted Radius Carrier Edition: Remote code execution vulnerability when EAP Authentication is configured.
9.8
First published (updated )
Juniper JUNOSJunos OS: J-Web has an Improper Neutralization of CRLF Sequences in its HTTP Headers which allows an attacker to carry out multiple types of attacks.
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOScSRX: Use of Hard-coded Cryptographic Keys allows an attacker to take control of the device through device management services.
9.8
First published (updated )
Juniper AppformixContrail Insights: The REST API implementation allows an unauthenticated remote attacker to execute commands as root.
10
First published (updated )
Juniper JUNOSJunos OS: Remote code execution vulnerability in overlayd service
9.8
First published (updated )
Juniper JUNOSJunos OS: SRX Series: A remote attacker may be able to cause a PFE buffer overflow to arbitrarily remotely execute code or commands on the target device with UTM enabled.
10
First published (updated )
Juniper JUNOSJunos OS: J-Web: Cross-site scripting attack allows an attacker to gain control of another users session.
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSNFX Series: Hard-coded credentials allow an attacker to take control of any instance through administrative interfaces.
10
First published (updated )
Juniper JUNOSJunos OS and Junos OS Evolved: Upon receipt of a specific BGP FlowSpec message network traffic may be disrupted.
10
First published (updated )
Juniper JUNOSJunos OS: MX Series: Receipt of specific packets can cause services card to restart when DNS filtering is configured.
9.9
First published (updated )
Juniper JUNOSJunos OS: SRX Series: processing a malformed HTTP message when ICAP redirect service is enabled may can lead to flowd process crash or remote code execution
9.8
First published (updated )
Juniper JUNOSJunos OS: SRX Series: Double free vulnerability can lead to DoS or remote code execution due to the processing of a specific HTTP message when ICAP redirect service is enabled
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJuniper Junos OS Path Traversal Vulnerability
First published (updated )
Juniper JUNOSJunos OS: vMX: Default credentials supplied in vMX configuration
10
First published (updated )
Juniper JUNOSNFX250 Series: Hardcoded credentials in the vSRX VNF instance.
10
First published (updated )
Juniper JUNOSJunos OS: Firewall filter terms named "internal-1" and "internal-2" being ignored
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSQFX5000 Series, EX4300, EX4600: A stack buffer overflow vulnerability in Packet Forwarding Engine manager (FXPC) process
9.8
First published (updated )
Juniper JUNOSJunos OS: Specially crafted packets sent to port 111 on any interface triggers responses from the management interface
9.1
First published (updated )
Juniper Advanced Threat PreventionJuniper ATP: Two hard coded credentials sharing the same password give an attacker the ability to take control of any installation of the software.
10
First published (updated )
Juniper JUNOSJunos OS: EX2300 and EX3400 series: Certain stateless firewall filter rules might not take effect
9.8
First published (updated )
Juniper Advanced Threat PreventionJuniper ATP: Hard coded credentials used in Web Collector
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: vMX series: Predictable IP ID sequence numbers vulnerability
10
First published (updated )
Juniper JUNOSJunos OS: EX, QFX and MX series: Packet Forwarding Engine manager (FXPC) process crashes due to a crafted HTTP packet in a Virtual Chassis configuration
9.8
First published (updated )
Juniper JUNOSJunos OS: authd allows assignment of IP address requested by DHCP subscriber logging in with Option 50 (Requested IP Address)
9.6
First published (updated )
Juniper JUNOSNFX Series: Insecure sshd configuration in Juniper Device Manager (JDM) and host OS
9.8
First published (updated )
Juniper JUNOSJunos OS: Unauthenticated remote root access possible when RSH service is enabled
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper Contrail Service OrchestrationJuniper Networks Contrail Service Orchestration releases prior to 3.3.0 have Cassandra service enabl…
9.8
First published (updated )
Juniper JUNOSJunos OS: RPD daemon crashes due to receipt of crafted BGP NOTIFICATION messages
9.8
First published (updated )
Juniper Contrail Service OrchestrationContrail Service Orchestration: Hardcoded credentials for Keystone service.
9.8
First published (updated )
Juniper Contrail Service OrchestrationContrail Service Orchestration: Hardcoded credentials for Grafana service
9.8
First published (updated )
Juniper Contrail Service OrchestrationContrail Service Orchestration: hardcoded cryptographic certificates and keys
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper Contrail Service OrchestrationJuniper Networks CSO versions prior to 4.0.0 may log passwords in log files leading to an informatio…
9.8
First published (updated )
Juniper JUNOSJunos OS: QFX5200 and QFX10002: Unintended ONIE partition was shipped with certain Junos OS .bin and .iso images
10
First published (updated )
Juniper JUNOSJunos OS: Kernel crash upon receipt of crafted CLNP datagrams
9.8
First published (updated )
Juniper Junos SpaceThe MySQL server in Juniper Networks Junos Space before 13.3R1.8 has an unspecified account with a h…
10
First published (updated )
Juniper AppformixAppFormix: Debug Shell Command Execution in AppFormix Agent
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.