Lucene search
K

303 matches found

Vulnrichment
Vulnrichment
added 2024/10/11 3:36 p.m.19 views

CVE-2024-47509 Junos OS Evolved: Specific low privileged CLI commands and SNMP GET requests can trigger a resource leak #3

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...

7.1CVSS6.6AI score0.00375EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/11 3:35 p.m.21 views

CVE-2024-47508 Junos OS Evolved: Specific low privileged CLI commands and SNMP GET requests can trigger a resource leak #2

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...

7.1CVSS0.00375EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/11 3:35 p.m.11 views

CVE-2024-47508 Junos OS Evolved: Specific low privileged CLI commands and SNMP GET requests can trigger a resource leak #2

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...

7.1CVSS6.6AI score0.00375EPSS
Exploits0References1
CVE
CVE
added 2024/10/11 3:35 p.m.50 views

CVE-2024-47508

This CVE refers to an Allocation of Resources Without Limits or Throttling in Juniper Junos OS Evolved, affecting evo-pfemand (PFE management daemon). The vulnerability arises from a GUID resource leak when specific SNMP GETs or low-privilege CLI commands are used, leading to exhaustion, FPC hang...

7.1CVSS6.5AI score0.00375EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/10/11 3:35 p.m.22 views

CVE-2024-47505 Junos OS Evolved: Specific low privileged CLI commands and SNMP GET requests can trigger a resource leak #1

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...

7.1CVSS0.00375EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/11 3:35 p.m.12 views

CVE-2024-47505 Junos OS Evolved: Specific low privileged CLI commands and SNMP GET requests can trigger a resource leak #1

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...

7.1CVSS6.6AI score0.00375EPSS
Exploits0References1
CVE
CVE
added 2024/10/11 3:35 p.m.52 views

CVE-2024-47505

CVE-2024-47505 concerns Juniper Networks Junos OS Evolved, affecting the PFE management daemon evo-pfemand. The vulnerability is a GUID resource leak (allocation of resources without limits/throttling) that occurs when specific SNMP GET operations or low-privilege CLI commands are run. This can e...

7.1CVSS6.5AI score0.00375EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/10/11 3:31 p.m.22 views

CVE-2024-47502 Junos OS Evolved: TCP session state is not always cleared on the Routing Engine leading to DoS

An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, network based attacker to cause a Denial of Service DoS. In specific cases the state of TCP sessions that are terminated is not cleared, which over...

8.7CVSS0.00617EPSS
Exploits0References1
CVE
CVE
added 2024/10/11 3:31 p.m.49 views

CVE-2024-47502

CVE-2024-47502 affects Juniper Networks Junos OS Evolved. The issue is an Allocation of Resources Without Limits or Throttling in the kernel that can allow an unauthenticated, network-based attacker to trigger a DoS. In IPv4-only scenarios, TCP sessions terminated on the Routing Engine may not ha...

8.7CVSS7.5AI score0.00617EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/11 3:31 p.m.12 views

CVE-2024-47501 Junos OS: MX304, MX with MPC10/11/LC9600, and EX9200 with EX9200-15C: In a VPLS or Junos Fusion scenario specific show commands cause FPCs to crash

A NULL Pointer Dereference vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on MX304, MX with MPC10/11/LC9600, and EX9200 with EX9200-15C allows a locally authenticated attacker with low privileges to cause a Denial of Service DoS. In a VPLS or Junos Fusion scenario,...

6.8CVSS7AI score0.00205EPSS
Exploits0References1
CVE
CVE
added 2024/10/11 3:24 p.m.57 views

CVE-2024-47494

CVE-2024-47494 affects Juniper Networks Junos OS, specifically the AgentD process and related FPC handling. A TOCTOU race condition during telemetry polling can cause AgentD to reaping an already destroyed sensor, leading to memory corruption and a DoS when the FPC crashes. The FPC auto-recovers ...

8.2CVSS5.9AI score0.0035EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/10/11 3:24 p.m.25 views

CVE-2024-47494 Junos OS: Due to a race condition AgentD process causes a memory corruption and FPC reset

A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the AgentD process of Juniper Networks Junos OS allows an attacker who is already causing impact to established sessions which generates counter changes picked up by the AgentD process during telemetry polling, to move the AgentD...

8.2CVSS0.0035EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/11 3:24 p.m.17 views

CVE-2024-47494 Junos OS: Due to a race condition AgentD process causes a memory corruption and FPC reset

A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the AgentD process of Juniper Networks Junos OS allows an attacker who is already causing impact to established sessions which generates counter changes picked up by the AgentD process during telemetry polling, to move the AgentD...

8.2CVSS7AI score0.0035EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/11 3:24 p.m.18 views

CVE-2024-47493 Junos OS: MX Series: Trio-based FPCs: Continuous physical Interface flaps causes local FPC to crash

A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine PFE of the Juniper Networks Junos OS on the MX Series platforms with Trio-based FPCs allows an unauthenticated, adjacent attacker to cause a Denial of Service DoS. In case of channelized Modular...

7.1CVSS0.00355EPSS
Exploits0References2
CVE
CVE
added 2024/10/11 3:24 p.m.46 views

CVE-2024-47493

CVE-2024-47493 affects Junos OS on MX Series with Trio-based FPCs. The vulnerability is a Missing Release of Memory after Effective Lifetime in the PFE, causing a heap memory leak during channelized MIC interface flap activity and potentially leading to DoS for unauthenticated adjacent attackers....

7.1CVSS6.4AI score0.00355EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/10/01 12:0 a.m.8 views

PUB-A-315191818

Bulletin has no description...

5.1CVSS5.2AI score0.00094EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/25 12:0 a.m.6 views

PT-2024-7135

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 21.4R3-S9 Junos OS versions 22.2 prior to 22.2R3-S5 Junos OS versions 22.3 prior to 22.3R3-S4 Junos OS versions 22.4 prior to 22.4R3-S3 Junos OS versions 23.2 prior to 23.2R2-S2 Junos OS versions 23.4 prior to 23.4R2...

8.2CVSS5.9AI score0.0035EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2024/07/11 4:17 p.m.13 views

CVE-2024-39542 Junos OS and Junos OS Evolved: A malformed CFM packet or specific transit traffic leads to FPC crash

An Improper Validation of Syntactic Correctness of Input vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on MX Series with MPC10/11 or LC9600, MX304, and Junos OS Evolved on ACX Series and PTX Series allows an unauthenticated, network based attacker to cause a...

8.7CVSS7AI score0.00473EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/11 4:15 p.m.12 views

CVE-2024-39539 Junos OS: MX Series: Continuous subscriber logins will lead to a memory leak and eventually an FPC crash

A Missing Release of Memory after Effective Lifetime vulnerability in Juniper Networks Junos OS on MX Series allows an unauthenticated adjacent attacker to cause a Denial-of-Service DoS. In a subscriber management scenario continuous subscriber logins will trigger a memory leak and eventually lea...

6CVSS7AI score0.00217EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/11 4:15 p.m.17 views

CVE-2024-39539 Junos OS: MX Series: Continuous subscriber logins will lead to a memory leak and eventually an FPC crash

A Missing Release of Memory after Effective Lifetime vulnerability in Juniper Networks Junos OS on MX Series allows an unauthenticated adjacent attacker to cause a Denial-of-Service DoS. In a subscriber management scenario continuous subscriber logins will trigger a memory leak and eventually lea...

6CVSS0.00217EPSS
Exploits0References1
Rows per page
Query Builder