Filters
Juniper JUNOSJunos OS: SRX Series and EX Series: J-Web doesn't sufficiently sanitize input to prevent XSS
8.8
EPSS
0.05%
First published (updated )
Juniper JUNOSJunos OS: SRX Series and EX Series: J-Web - unauthenticated access to temporary files containing sensitive information
7.5
EPSS
0.09%
First published (updated )
Juniper JUNOSJunos OS: EX4100, EX4400, EX4600, QFX5000 Series: A high rate of specific ICMP traffic will cause the PFE to hang
7.5
EPSS
0.05%
First published (updated )
Juniper JUNOSJunos OS: QFX5000 Series, EX2300, EX3400, EX4100, EX4400 and EX4600: Packet flooding will occur when IGMP traffic is sent to an isolated VLAN
6.5
First published (updated )
Juniper JUNOSJunos OS: QFX5000 Series and EX4000 Series: Denial of Service (DoS) on a large scale VLAN due to PFE hogging
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: QFX5000 Series, EX4600 Series: In a VxLAN scenario an adjacent attacker within the VxLAN sending genuine packets may cause a DMA memory leak to occur.
6.5
First published (updated )
Juniper JUNOSJunos OS: SRX Series: A vulnerability in J-Web allows an unauthenticated attacker to upload and download arbitrary files
First published (updated )
Juniper JUNOSJuniper Junos OS EX Series PHP External Variable Modification Vulnerability
First published (updated )
Juniper JUNOSJuniper Junos OS EX Series Missing Authentication for Critical Function Vulnerability
First published (updated )
Juniper JUNOSJuniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: EX and SRX Series: A PHP vulnerability in J-Web allows an unauthenticated to control an important environment variable
First published (updated )
Juniper JUNOSJunos OS: QFX5k Series, EX46xx Series: MAC limiting feature stops working after PFE restart or device reboot
6.5
First published (updated )
Juniper JUNOSJunos OS: EX4300-MP, EX4600, QFX5000 Series: In VxLAN scenarios specific packets processed cause a memory leak leading to a PFE crash
6.5
First published (updated )
Juniper JUNOSJunos OS: EX4600 Series and QFX5000 Series: Receipt of specific traffic will lead to an fxpc process crash followed by an FPC reboot
6.5
First published (updated )
Juniper JUNOSJunos OS: SRX and EX Series: Local privilege escalation flaw in "download" functionality
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: QFX5100/QFX5110/QFX5120/QFX5200/QFX5210/EX4600/EX4650 Series: When storm control profiling is enabled and a device is under an active storm, a Heap-based Buffer Overflow in the PFE will cause a device to hang.
7.5
First published (updated )
Juniper JUNOSJunos OS: QFX5000 Series, EX4600: Device may run out of memory, causing traffic loss, upon receipt of specific IPv6 packets
7.5
First published (updated )
Juniper JUNOSJunos OS: QFX5000 Series and EX4600 Series: Control traffic might be dropped if a high rate of specific multicast traffic is received
6.5
First published (updated )
Juniper JUNOSJunos OS: QFX5000 Series and EX4600 Series: Enhanced storm control might not work leading to partial Denial of Service
5.3
First published (updated )
Juniper JUNOSJunos OS: User-defined ARP Policer isn't applied on Aggregated Ethernet (AE) interface until firewall process is restarted
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: QFX5000 Series and EX4600 Series: Continuous traffic destined to a device configured with MC-LAG leading to nodes losing their control connection which can impact traffic
7.5
First published (updated )
Juniper JUNOSJunos OS: Denial of Service vulnerability in J-Web and web based (HTTP/HTTPS) services caused by a high number of specific requests
7.5
First published (updated )
Juniper JUNOSJunos OS: A race condition in the storm control profile may allow an attacker to cause a Denial of Service condition
7.4
First published (updated )
Juniper JUNOSJunos OS: EX4300-MP/EX4600/EX4650/QFX5K Series: Packet Forwarding Engine manager (FXPC) process crashes when deployed in a Virtual Chassis (VC) configuration
6.5
First published (updated )
Juniper JUNOSJunos OS: J-Web: Cross-site scripting attack allows an attacker to gain control of another users session.
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: Upon receipt of certain protocol packets with invalid payloads a self-propagating Denial of Service may occur.
7.4
First published (updated )
Juniper JUNOSJunos OS and Junos OS Evolved: Upon receipt of a specific BGP FlowSpec message network traffic may be disrupted.
10
First published (updated )
Juniper JUNOSNFX250, NFX350, QFX5K Series, EX2300 Series, EX3400 Series, EX4300 Multigigabit, EX4600 Series: Certain genuine traffic received by the Junos OS device will be discarded instead of forwarded.
7.5
First published (updated )
Juniper JUNOSJunos OS: EX and QFX5K Series: Storm Control does not work as expected when Redundant Trunk Group is configured
8.6
First published (updated )
Juniper JUNOSJunos OS: EX Series and QFX Series: Memory leak issue processing specific DHCP packets
7.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: jdhcpd process crash when forwarding a malformed DHCP packet.
5.3
First published (updated )
Juniper JUNOSJunos OS: EX and QFX Series: Console port authentication bypass vulnerability
6.9
First published (updated )
Juniper JUNOSJunos OS: BGP session termination upon receipt of specific BGP FlowSpec advertisement.
8.6
First published (updated )
Juniper JUNOSJunos OS: Cross-Site Scripting (XSS) in J-Web
7.5
First published (updated )
Juniper JUNOSJunos OS: EX4300/EX4600/QFX3500/QFX5100 Series: Stateless IP firewall filter may fail to evaluate certain packets
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: vSRX, SRX1500, SRX4K, ACX5K, EX4600, QFX5100, QFX5110, QFX5200, QFX10K and NFX Series: console management port device authentication credentials are logged in clear text
5.9
First published (updated )
Juniper JUNOSJunos OS: Session fixation vulnerability in J-Web
8.8
First published (updated )
Juniper JUNOSJunos OS: RPD process crashes upon receipt of a specific SNMP packet
7.5
First published (updated )
Juniper JUNOSQFX5000 Series, EX4300, EX4600: A stack buffer overflow vulnerability in Packet Forwarding Engine manager (FXPC) process
9.8
First published (updated )
Juniper JUNOSOn EX2300, EX3400, EX4600, QFX3K and QFX5K series, firewall filter configuration cannot perform pack…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: A flowspec BGP update with a specific term-order causes routing protocol daemon (rpd) process to crash with a core.
7.5
First published (updated )
Juniper JUNOSJunos OS: EX, QFX and MX series: Packet Forwarding Engine manager (FXPC) process crashes due to a crafted HTTP packet in a Virtual Chassis configuration
9.8
First published (updated )
Juniper JUNOSJunos OS: Invalid IP/mask learned from DHCP server might cause device control daemon (dcd) process crash
5.9
First published (updated )
Juniper JUNOSQFX5000/EX4600 Series: Routing protocol flap upon receipt of high rate of Ethernet frames
6.5
First published (updated )
Juniper JUNOSJunos OS: Receipt of a specifically crafted malicious MPLS packet leads to a Junos kernel crash.
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Juniper JUNOSJunos OS: RPD daemon crashes upon receipt of specific MPLS packet
8.8
First published (updated )
Juniper JUNOSJunos OS: A privilege escalation vulnerability exists where authenticated users with shell access can become root
7.8
First published (updated )
Juniper JUNOSJunos OS: A malicious crafted IPv6 DHCP packet may cause the JDHCPD daemon to core
5.9
First published (updated )
Juniper JUNOSJunos: Denial of service vulnerability in SNMP MIB-II subagent daemon (mib2d).
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.