1242 matches found
The vulnerability in the J-Web web interface of the Junos OS operating system allows a perpetrator to gain access to the target system with administrator privileges.
The vulnerability of the J-Web web interface of the Junos OS operating system is related to session management errors. Exploiting this vulnerability can allow a malicious actor to gain access to the target system with administrator privileges...
The vulnerability of the Routing Engine component of the Junos OS operating system, which allows a hacker to trigger a service failure
The vulnerability of the Routing Engine component of the Junos OS operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted IPv6 packets...
The vulnerability of Junos OS router devices of the SRX Series arises from insufficient validation of input data. This allows attackers to trigger service interruptions.
The vulnerability of Junos OS router devices of the SRX Series exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted multi-address packets...
CVE-2019-0073
The PKI keys exported using the command "run request security pki key-pair export" on Junos OS may have insecure file permissions. This may allow another user on the Junos OS device with shell access to read them. This issue affects: Juniper Networks Junos OS 15.1X49 versions prior to 15.1X49-D18...
CVE-2019-0066
An unexpected status return value weakness in the Next-Generation Multicast VPN NG-mVPN service of Juniper Networks Junos OS allows attacker to cause a Denial of Service DoS condition and core the routing protocol daemon rpd process when a specific malformed IPv4 packet is received by the device...
CVE-2019-0062
A session fixation vulnerability in J-Web on Junos OS may allow an attacker to use social engineering techniques to fix and hijack a J-Web administrators web session and potentially gain administrative access to the device. This issue affects: Juniper Networks Junos OS 12.3 versions prior to...
CVE-2019-0064
On SRX5000 Series devices, if 'set security zones security-zone tcp-rst' is configured, the flowd process may crash when a specific TCP packet is received by the device and triggers a new session. The process restarts automatically. However, receipt of a constant stream of these TCP packets may...
CVE-2019-0068
The SRX flowd process, responsible for packet forwarding, may crash and restart when processing specific multicast packets. By continuously sending the specific multicast packets, an attacker can repeatedly crash the flowd process causing a sustained Denial of Service. This issue affects Juniper...
CVE-2019-0067
Receipt of a specific link-local IPv6 packet destined to the RE may cause the system to crash and restart vmcore. By continuously sending a specially crafted IPv6 packet, an attacker can repeatedly crash the system causing a prolonged Denial of Service DoS. This issue affects Juniper Networks Jun...
CVE-2019-0065
On MX Series, when the SIP ALG is enabled, receipt of a certain malformed SIP packet may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending a crafted SIP packet, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a sustained Denial of Service. This issue...
CVE-2019-0060
The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel. Continued processing of these packets may result in an extended Denial of Service DoS condition. This issue only occurs...
CVE-2019-0057
An improper authorization weakness in Juniper Networks Junos OS allows a local authenticated attacker to bypass regular security controls to access the Junos Device Manager JDM application and take control of the system. This issue affects: Juniper Networks Junos OS versions prior to 18.2R1,...
CVE-2019-0050
Under certain heavy traffic conditions srxpfe process can crash and result in a denial of service condition for the SRX1500 device. Repeated crashes of the srxpfe can result in an extended denial of service condition. The SRX device may fail to forward traffic when this condition occurs. Affected...
CVE-2019-0055
A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service DoS to the device by sending specific types of valid SIP traffic to the device. In this case, the flowd process crashes and generates a core dump while processing...
CVE-2019-0054
An Improper Certificate Validation weakness in the SRX Series Application Identification app-id signature update client of Juniper Networks Junos OS allows an attacker to perform Man-in-the-Middle MitM attacks which may compromise the integrity and confidentiality of the device. This issue affect...
CVE-2019-0051
SSL-Proxy feature on SRX devices fails to handle a hardware resource limitation which can be exploited by remote SSL/TLS servers to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition. For this issue to occur, clients protected by the...
The vulnerability of the BGP protocol implementation in the JunOS operating system allows a attacker to cause a service failure.
The vulnerability of the BGP protocol implementation in the JunOS operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures by performing a certain sequence of BGP session restarts...
Juniper Networks Junos OS Denial of Service Vulnerability (CNVD-2019-22784)
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS SRX Series. An attacker could exploit the vulnerability to...
Juniper Networks Junos OS Denial of Service Vulnerability (CNVD-2019-22785)
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS EX4300 Series. An attacker could exploit the vulnerability to...
Unspecified Vulnerability in Juniper Networks Junos OS (CNVD-2019-41481)
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK.A security vulnerability exists in Juniper Networks Junos OS. An attacker could exploit this vulnerability to...