Lucene search
K

145 matches found

Tenable Nessus
Tenable Nessus
added 2021/02/03 12:0 a.m.46 views

Juniper Junos OS DoS (JSA11101)

The version of Junos OS installed on the remote host is affected by a denial of service vulnerability. An unauthenticated remote attacker can send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain leading to disruptions in...

10CVSS8.4AI score0.01317EPSS
Exploits0References2
OSV
OSV
added 2021/01/15 6:15 p.m.4 views

CVE-2021-0211

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon RPD service allows an attacker to send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain...

10CVSS5.8AI score0.01317EPSS
Exploits0References1
NVD
NVD
added 2021/01/15 6:15 p.m.29 views

CVE-2021-0211

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon RPD service allows an attacker to send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain...

10CVSS9.4AI score0.01317EPSS
Exploits0References1
Prion
Prion
added 2021/01/15 6:15 p.m.25 views

Input validation

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon RPD service allows an attacker to send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain...

6.4CVSS9.2AI score0.01317EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2021/01/15 5:35 p.m.108 views

CVE-2021-0211

CVE-2021-0211 describes an improper check in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon (RPD) that allows an attacker to inject a valid BGP FlowSpec message, causing unexpected changes to route advertisements in the BGP FlowSpec domain and leading to a DoS condition. A...

10CVSS9.4AI score0.01317EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/01/15 5:35 p.m.28 views

CVE-2021-0211 Junos OS and Junos OS Evolved: Upon receipt of a specific BGP FlowSpec message network traffic may be disrupted.

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon RPD service allows an attacker to send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain...

10CVSS9.6AI score0.01317EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/10/01 12:0 a.m.6 views

The vulnerability of the BGP Flowspec implementation in the JunOS operating system allows a perpetrator to cause a service failure.

The vulnerability of the BGP Flowspec implementation on the JunOS operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.8CVSS7.2AI score0.01288EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/04/30 12:0 a.m.68 views

Junos OS: Established BGP Session Termination Vulnerability (JSA10996)

The version of Junos OS installed on the remote host is 12.3, 12.3X48, 14.1X53 or prior to 15.1R7-S5, 15.1F6-S13, 15.1X49-D180, 15.1X53-D238, 15.1X53-D497, 15.1X53-D592, 16.1R7-S7, 17.1R2-S12, 17.2R2-S7, 17.2X75-D102, 17.3R2-S5, 17.4R1-S8, 18.1R2-S4, or 18.2X75-D20. It is, therefore, affected by ...

8.6CVSS7.5AI score0.01288EPSS
Exploits0References2
NVD
NVD
added 2020/04/08 8:15 p.m.19 views

CVE-2020-1613

A vulnerability in the BGP FlowSpec implementation may cause a Juniper Networks Junos OS device to terminate an established BGP session upon receiving a specific BGP FlowSpec advertisement. The BGP NOTIFICATION message that terminates an established BGP session is sent toward the peer device that...

8.6CVSS8.5AI score0.01288EPSS
Exploits0References1
Prion
Prion
added 2020/04/08 8:15 p.m.18 views

Design/Logic Flaw

A vulnerability in the BGP FlowSpec implementation may cause a Juniper Networks Junos OS device to terminate an established BGP session upon receiving a specific BGP FlowSpec advertisement. The BGP NOTIFICATION message that terminates an established BGP session is sent toward the peer device that...

5CVSS7.4AI score0.01288EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/08 7:25 p.m.20 views

CVE-2020-1613 Junos OS: BGP session termination upon receipt of specific BGP FlowSpec advertisement.

A vulnerability in the BGP FlowSpec implementation may cause a Juniper Networks Junos OS device to terminate an established BGP session upon receiving a specific BGP FlowSpec advertisement. The BGP NOTIFICATION message that terminates an established BGP session is sent toward the peer device that...

8.6CVSS8.5AI score0.01288EPSS
Exploits0References1
CVE
CVE
added 2020/04/08 7:25 p.m.58 views

CVE-2020-1613

The CVE describes a vulnerability in Juniper Junos OS BGP FlowSpec handling where receiving a specific FlowSpec advertisement can terminate an established BGP session. Affected products include Junos OS versions listed in the CVE (e.g., 12.3, 12.3X48, 14.1X53, 15.1R7-S5 and earlier, 16.1R7-S7 and...

8.6CVSS7.7AI score0.01288EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/02/15 12:0 a.m.302 views

Junos OS: Multiple vulnerabilities in libxml2 (JSA10902)

According to its self-reported version number, the remote Juniper Junos device is affected by a vulnerability. When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, a reachable assertion...

7.5CVSS6.8AI score0.01973EPSS
Exploits0References2
OSV
OSV
added 2019/01/15 9:29 p.m.6 views

CVE-2019-0003

When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, a reachable assertion failure occurs, causing the routing protocol daemon rpd process to crash with a core file being generated. Affected...

5.9CVSS5.8AI score0.01973EPSS
Exploits0References2
Prion
Prion
added 2019/01/15 9:29 p.m.23 views

Authentication flaw

When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, a reachable assertion failure occurs, causing the routing protocol daemon rpd process to crash with a core file being generated. Affected...

4.3CVSS5.7AI score0.01973EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/01/15 9:29 p.m.26 views

CVE-2019-0003

When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, a reachable assertion failure occurs, causing the routing protocol daemon rpd process to crash with a core file being generated. Affected...

7.5CVSS6.3AI score0.01973EPSS
Exploits0References2
CVE
CVE
added 2019/01/15 9:0 p.m.73 views

CVE-2019-0003

CVE-2019-0003 describes a vulnerability in Juniper Junos OS where a flowspec BGP update containing a specific term-order can trigger a reachable assertion failure, crashing the routing protocol daemon (rpd) and producing a core. The issue affects Junos OS releases across SRX, EX, and QFX platform...

7.5CVSS6AI score0.01973EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/01/15 9:0 p.m.23 views

CVE-2019-0003 Junos OS: A flowspec BGP update with a specific term-order causes routing protocol daemon (rpd) process to crash with a core.

When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, a reachable assertion failure occurs, causing the routing protocol daemon rpd process to crash with a core file being generated. Affected...

7.5CVSS5.7AI score0.01973EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/01/23 12:0 a.m.21 views

Juniper Networks Junos OS BGP FlowSpec Denial of Service Vulnerability

Junos OS with BGB FlowSpec enabled are vulnerable to a Denial of Service attack. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS5.2AI score0.02721EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/01/23 12:0 a.m.34 views

Juniper Junos BGP FlowSpec rpd DoS (JSA10670)

According to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability due to improperly processing a malformed BGP Flow Specification FlowSpec prefix. A remote attacker can exploit this issue to crash the routing process daemon rpd. Note...

7.8CVSS5.6AI score0.02721EPSS
Exploits0References2
Rows per page
Query Builder