Filter
AND
AND

Juniper JUNOS2023-06: Out-of-Cycle Security Bulletin: Junos OS and Junos OS Evolved: A BGP session will flap upon receipt of a specific, optional transitive attribute

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: RPD crash when attempting to send a very long AS PATH to a non-4-byte-AS capable BGP neighbor

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An rpd crash occurs when a specific L2VPN command is run

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: In a MoFRR scenario an rpd core may be observed when a low privileged CLI command is executed

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Receipt of malformed BGP path attributes leads to a memory leak

8.7
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper Junos Os EvolvedJunos OS Evolved: CLI parameter processing issue allows privilege escalation

8.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: In an BGP scenario RPD crashes upon receiving and processing a specific malformed ISO VPN BGP UPDATE packet

7.5
First published (updated )

Juniper Junos Os EvolvedJunos OS Evolved: 'file copy' CLI command can disclose password to shell users

First published (updated )

Juniper Junos Os EvolvedJunos OS and Junos OS Evolved: A local attacker can retrieve sensitive information and elevate privileges on the device to an authorized user.

First published (updated )

Juniper Junos Os EvolvedJunos OS Evolved: ACX7000 Series: Specific IPv6 transit traffic gets exceptioned to the routing-engine which causes increased CPU utilization

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper Junos Os EvolvedJunos OS Evolved: shell-injection vulnerabilities in evo_tcpdump UI wrapper script

7.8
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Denial of Service vulnerability in local file processing

7.1
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: A vulnerability in the Juniper Agile License Client may allow an attacker to perform Remote Code Execution (RCE)

8.8
First published (updated )

Juniper Junos Os EvolvedJunos OS Evolved: Telnet service may be enabled when it is expected to be disabled.

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An rpd crash can occur due to memory corruption caused by flapping BGP sessions

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper Junos Os EvolvedJunos OS Evolved: PTX Series: Multiple FPCs become unreachable due to continuous polling of specific SNMP OID

7.5
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: An l2cpd memory leak can occur when specific LLDP packets are received leading to a DoS

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: In a BGP multipath scenario, when one of the contributing routes is flapping often and rapidly, rpd may crash

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Denial of Service (DoS) vulnerability in RPD upon receipt of specific BGP update

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Privilege escalation vulnerability in Juniper Extension Toolkit (JET)

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: An IS-IS adjacency might be taken down if a bad hello PDU is received for an existing adjacency causing a DoS

First published (updated )

Juniper Junos Os EvolvedJunos OS Evolved: shell-injection vulnerabilities in evo_sftp UI wrapper script

7.8
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Local Privilege Escalation vulnerability

7.8
First published (updated )

Juniper Junos Os EvolvedJunos OS Evolved: Multiple shell-injection vulnerabilities in EVO UI wrapper scripts

7.8
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: RPD crash upon receipt of specific OSPFv3 LSAs

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Juniper JUNOSJunos OS and Junos OS Evolved: /var/run/<pid>.env files are potentially not deleted during termination of a gRPC connection causing inode exhaustion

First published (updated )

Juniper Junos Os EvolvedJunos OS Evolved: Incorrect file permissions can allow low-privileged user to cause another user to execute arbitrary commands

7.3
First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: PPMD goes into infinite loop upon receipt of malformed OSPF TLV

First published (updated )

Juniper JUNOSJunos OS and Junos OS Evolved: Due to a race condition the rpd process can crash upon receipt of a BGP update message containing flow spec route

First published (updated )

Juniper Junos Os EvolvedJunos OS Evolved: The ssh CLI command always runs as root which can lead to privilege escalation

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203