31 matches found
CVE-2026-33775
A Missing Release of Memory after Effective Lifetime vulnerability in the BroadBand Edge subscriber management daemon bbe-smgd of Juniper Networks Junos OS on MX Series allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. If the authentication packet-type option is...
CVE-2026-33785
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with low privileges to execute specific commands which will lead to a complete compromise of managed devices. Any user logged in, without requiring specific privileges, ca...
CVE-2026-33785 Junos OS: MX Series: Missing Authorization for specific 'request' CLI commands in a JDM/CSDS scenario
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with low privileges to execute specific commands which will lead to a complete compromise of managed devices. Any user logged in, without requiring specific privileges, ca...
CVE-2026-33775
CVE-2026-33775 describes a memory leak (Missing Release of Memory after Effective Lifetime) in Juniper Junos OS MX Series bbe-smgd that can be triggered by a mismatch between configured and received packet types. An adjacent, unauthenticated attacker may cause a DoS by exhausting heap memory, aft...
CVE-2026-33775 Junos OS: MX Series: Mismatch between configured and received packet types causes memory leak in bbe-smgd
A Missing Release of Memory after Effective Lifetime vulnerability in the BroadBand Edge subscriber management daemon bbe-smgd of Juniper Networks Junos OS on MX Series allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. If the authentication packet-type option is...
CVE-2025-21594
An Improper Check for Unusual or Exceptional Conditions vulnerability in the pfe packet forwarding engine of Juniper Networks Junos OS on MX Series causes a port within a pool to be blocked leading to Denial of Service DoS. In a DS-Lite Dual-Stack Lite and NAT Network Address Translation scenario...
PT-2025-15867 · Juniper Networks · Junos
Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.2R3-S9 Junos OS versions 21.4 prior to 21.4R3-S8 Junos OS versions 22.2 prior to 22.2R3-S4 Junos OS versions 22.4 prior to 22.4R3-S5 Junos OS versions 23.2 prior to 23.2R2-S2 Junos OS versions 23.4 prior to 23.4R...
CVE-2024-39542
An Improper Validation of Syntactic Correctness of Input vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on MX Series with MPC10/11 or LC9600, MX304, and Junos OS Evolved on ACX Series and PTX Series allows an unauthenticated, network based attacker to cause a...
PT-2024-1135 · Juniper Networks · Junos
Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on MX Series versions prior to 20.4R3-S9 Juniper Networks Junos OS on MX Series version 21.2 versions prior to 21.2R3-S7 Juniper Networks Junos OS on MX Series version 21.3 versions prior to 21.3R3-S5 Juniper Network...
CVE-2023-44199
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on MX Series allows a network-based, unauthenticated attacker to cause a Denial of Service DoS. On Junos MX Series platforms with Precision Time Protocol PTP...
CVE-2023-36841
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS on MX Series allows a unauthenticated network-based attacker to cause an infinite loop, resulting in a Denial of Service DoS. An attacker who sends malformed TCP...
PT-2023-6130 · Juniper Networks · Junos
Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS on MX Series versions prior to 20.4R3-S4 Juniper Networks Junos OS on MX Series version 21.1R1 and later versions Juniper Networks Junos OS on MX Series versions prior to 21.2R3-S2 Juniper Networks Junos OS on MX...
Juniper Junos OS Vulnerability (JSA10892)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA10892 advisory. - On MX Series and M120/M320 platforms configured in a Broadband Edge BBE environment, subscribers logging in with DHCP Option 50 to request a specific IP address will be...
CVE-2023-36850
An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Connectivity Fault ManagementCFM module of Juniper Networks Junos OS on MX Seriesexcept MPC10, MPC11 and LC9600 allows an adjacent attacker on the local broadcast domain to cause a Denial of ServiceDoS...
CVE-2023-28976
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on MX Series allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. If specific traffic is received on MX Series and its rate exceeds...
Juniper Networks Junos OS 代码问题漏洞
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A code issue vulnerability exists in the Juniper Networks Junos OS MX Series that arises from an exception o...
The vulnerability of the SIP ALG application-level gateway on Junos OS MX Series routers allows a attacker to cause a service failure.
The vulnerability of the SIP application-level gateway implemented on Junos OS MX Series routers involves a memory release error. Exploiting this vulnerability allows an attacker to cause service failure by sending specially crafted SIP packets remotely...
CVE-2020-1660
When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon mspmand process, responsible for managing "URL Filtering service", may crash, causing the...
CVE-2020-1667
When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon mspmand process might be bypassed due to a race condition. Due to this vulnerability,...
CVE-2020-1667
When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon mspmand process might be bypassed due to a race condition. Due to this vulnerability,...