Lucene search
K

37 matches found

OSV
OSV
added 2025/07/11 3:15 p.m.4 views

CVE-2025-52955

An Incorrect Calculation of Buffer Size vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent unauthenticated attacker to cause a memory corruption that leads to a rpd crash. When the logical interface using a routing instance flaps...

7.1CVSS5.9AI score0.00271EPSS
Exploits0References1
CVE
CVE
added 2025/07/11 2:42 p.m.28 views

CVE-2025-52955

CVE-2025-52955 describes an Incorrect Calculation of Buffer Size in Juniper Networks Junos OS and Junos OS Evolved rpd when jflow/sflow updates are sent as a routing instance’s logical interface flaps. The issue can cause memory corruption, leading to an rpd crash and restart, with sustained DoS ...

7.1CVSS6.8AI score0.00271EPSS
Exploits0References1Affected Software2
RedhatCVE
RedhatCVE
added 2025/05/23 10:34 a.m.10 views

CVE-2024-9003

A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic. This issue affects the function AttachmentUploadController of the file /WF/Ath/EntityMutliFileLoad.do of the component Attachment Handler. The manipulation of the argument oid leads to improper acce...

5.3CVSS6.8AI score0.00334EPSS
Exploits0References1
NVD
NVD
added 2025/04/09 8:15 p.m.18 views

CVE-2025-30657

An Improper Encoding or Escaping of Output vulnerability in the Sampling Route Record Daemon SRRD of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. When a device configured for flow-monitoring receives a specific BGP update message, i...

6.9CVSS0.00355EPSS
Exploits0References1
OSV
OSV
added 2024/09/19 9:15 p.m.5 views

CVE-2024-9003

A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic. This issue affects the function AttachmentUploadController of the file /WF/Ath/EntityMutliFileLoad.do of the component Attachment Handler. The manipulation of the argument oid leads to improper acce...

5.3CVSS4.8AI score0.00334EPSS
Exploits0References4
NVD
NVD
added 2024/09/19 9:15 p.m.28 views

CVE-2024-9003

A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic. This issue affects the function AttachmentUploadController of the file /WF/Ath/EntityMutliFileLoad.do of the component Attachment Handler. The manipulation of the argument oid leads to improper acce...

5.3CVSS0.00334EPSS
Exploits0References4
CVE
CVE
added 2024/09/19 9:0 p.m.42 views

CVE-2024-9003

CVE-2024-9003 affects Jinan Chicheng/JFlow 2.0.0. The vulnerability is in the function AttachmentUploadController of the Attachment Handler, in file "/WF/Ath/EntityMutliFile_Load.do". The issue stems from manipulation of the argument oid , which leads to improper access controls and potentially e...

5.3CVSS4.7AI score0.00334EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2024/09/19 9:0 p.m.35 views

CVE-2024-9003 Jinan Chicheng Company JFlow Attachment EntityMutliFile_Load.do AttachmentUploadController access control

A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic. This issue affects the function AttachmentUploadController of the file /WF/Ath/EntityMutliFileLoad.do of the component Attachment Handler. The manipulation of the argument oid leads to improper acce...

5.3CVSS0.00334EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/09/19 9:0 p.m.13 views

CVE-2024-9003 Jinan Chicheng Company JFlow Attachment EntityMutliFile_Load.do AttachmentUploadController access control

A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic. This issue affects the function AttachmentUploadController of the file /WF/Ath/EntityMutliFileLoad.do of the component Attachment Handler. The manipulation of the argument oid leads to improper acce...

5.3CVSS6.8AI score0.00334EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/09/19 12:0 a.m.6 views

PT-2024-39360 · Jflow · Jflow

Name of the Vulnerable Software and Affected Versions: JFlow version 2.0.0 Description: A problematic issue affects the function AttachmentUploadController of the component Attachment Handler, specifically in the file "/WF/Ath/EntityMutliFile Load.do". The manipulation of the argument oid leads t...

5.3CVSS5AI score0.00334EPSS
Exploits0References9
OSV
OSV
added 2024/07/11 5:15 p.m.6 views

CVE-2024-39553

An Exposure of Resource to Wrong Sphere vulnerability in the sampling service of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to send arbitrary data to the device, which leads msvcsd process to crash with limited availability impacting Denial of Service DoS a...

6.9CVSS5.9AI score0.00398EPSS
Exploits1References1
CVE
CVE
added 2024/07/11 4:32 p.m.54 views

CVE-2024-39553

CVE-2024-39553 affects Juniper Networks Junos OS Evolved sampling service (inline jflow). A Resource Exposure to Wrong Sphere vulnerability allows an unauthenticated, network-based attacker to send arbitrary data to the device, causing the msvcsd process to crash and yielding limited DoS while no...

6.9CVSS6.7AI score0.00398EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/10 12:0 a.m.8 views

PT-2024-28529 · Juniper Networks · Junos Evolved

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS Evolved versions 21.4 through 21.4R3-S7-EVO Juniper Networks Junos OS Evolved versions 22.2 through 22.2R3-S3-EVO Juniper Networks Junos OS Evolved versions 22.3 through 22.3R3-S2-EVO Juniper Networks Junos OS Evolve...

6.9CVSS7.5AI score0.00398EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2024/01/12 12:55 a.m.5 views

CVE-2024-21611 Junos OS and Junos OS Evolved: In a jflow scenario continuous route churn will cause a memory leak and eventually an rpd crash

A Missing Release of Memory after Effective Lifetime vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. In a Juniper Flow Monitoring jflow scenario route churn that...

7.5CVSS7AI score0.00586EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/10 12:0 a.m.4 views

PT-2024-1112 · Juniper Networks · Junos Evolved +1

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.4R3 Junos OS versions prior to 22.1R3 Junos OS versions prior to 22.2R3 Junos OS Evolved versions prior to 21.4R3-EVO Junos OS Evolved versions prior to 22.1R3-EVO Junos OS Evolved versions prior to 22.2R3-EVO...

7.8CVSS7.5AI score0.00586EPSS
Exploits0References9
OSV
OSV
added 2021/04/22 8:15 p.m.5 views

CVE-2021-0270

On PTX Series and QFX10k Series devices with the "inline-jflow" feature enabled, a use after free weakness in the Packet Forwarding Engine PFE microkernel architecture of Juniper Networks Junos OS may allow an attacker to cause a Denial of Service DoS condition whereby one or more Flexible PIC...

5.9CVSS6.2AI score0.00722EPSS
Exploits0References2
Prion
Prion
added 2021/04/22 8:15 p.m.17 views

Race condition

On PTX Series and QFX10k Series devices with the "inline-jflow" feature enabled, a use after free weakness in the Packet Forwarding Engine PFE microkernel architecture of Juniper Networks Junos OS may allow an attacker to cause a Denial of Service DoS condition whereby one or more Flexible PIC...

4.3CVSS5.8AI score0.00722EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder