CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/04/09 9:31 p.m.•2 views

CVE-2026-33797 Junos OS and Junos OS Evolved: An attacker sending a specific genuine BGP packet causes a BGP reset

7.4CVSS5.8AI score0.00166EPSS

Exploits0References2

ATTACKERKB•added 2026/04/09 9:30 p.m.•3 views

CVE-2026-33779

An Improper Following of a Certificate's Chain of Trust vulnerability in J-Web of Juniper Networks Junos OS on SRX Series allows a PITM to intercept the communication of the device and get access to confidential information and potentially modify it. When an SRX device is provisioned to connect t...

8.3CVSS5.9AI score0.00121EPSS

CVE•added 2026/04/09 9:30 p.m.•14 views

CVE-2026-33779

The CVE concerns Junos OS on SRX Series failing to properly verify the server certificate when provisioning to Security Director cloud, enabling a PITM to intercept traffic and access credentials and sensitive data. Affected Junos OS versions include all before 22.4R3-S9, 23.2 before 23.2R2-S6, 2...

8.3CVSS5.9AI score0.00121EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/04/09 9:30 p.m.•17 views

CVE-2026-33775 Junos OS: MX Series: Mismatch between configured and received packet types causes memory leak in bbe-smgd

A Missing Release of Memory after Effective Lifetime vulnerability in the BroadBand Edge subscriber management daemon bbe-smgd of Juniper Networks Junos OS on MX Series allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS. If the authentication packet-type option is...

7.1CVSS0.00195EPSS

ATTACKERKB•added 2026/04/09 9:30 p.m.•1 views

CVE-2026-33775

7.1CVSS5.8AI score0.00195EPSS

ATTACKERKB•added 2026/04/09 9:29 p.m.•2 views

CVE-2026-33782

A Missing Release of Memory after Effective Lifetime vulnerability in the DHCP daemon jdhcpd of Juniper Networks Junos OS on MX Series, allows an adjacent, unauthenticated attacker to cause a memory leak, that will eventually cause a complete Denial-of-Service DoS. In a DHCPv6 over PPPoE, or DHCP...

8.7CVSS5.8AI score0.00288EPSS

Vulnrichment•added 2026/04/09 9:29 p.m.•2 views

CVE-2026-33782 Junos OS: MX Series: In specific DHCPv6 scenarios jdhcpd memory increases continuously with subscriber logouts

8.7CVSS5.7AI score0.00288EPSS

ATTACKERKB•added 2026/04/09 9:29 p.m.•1 views

CVE-2026-33780

A Missing Release of Memory after Effective Lifetime vulnerability in the Layer 2 Address Learning Daemon l2ald of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a memory leak ultimately leading to a Denial of Service DoS. In an EVPN-MPLS...

7.1CVSS6AI score0.00173EPSS

ATTACKERKB•added 2026/04/09 9:28 p.m.•5 views

CVE-2026-33773

An Incorrect Initialization of Resource vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on specific EX Series and QFX Series device allows an unauthenticated, network-based attacker to cause an integrity impact to downstream networks. When the same family inet or...

6.9CVSS5.9AI score0.00201EPSS

Exploits0References2

Vulnrichment•added 2026/04/09 9:28 p.m.•1 views

CVE-2026-33773 Junos OS: EX Series, QFX Series: If the same egress filter is configured on both an IRB and a physical interface one of those is not applied

6.9CVSS5.8AI score0.00201EPSS

CVE•added 2026/04/09 9:28 p.m.•9 views

CVE-2026-33786

CVE-2026-33786 affects Juniper Networks Junos OS running on SRX1600, SRX2300, and SRX4300. The issue is an Improper Check for Unusual or Exceptional Conditions in the chassis control daemon (chassisd), allowing a local, low-privilege attacker to cause a complete Denial of Service. When a specific...

6.8CVSS5.9AI score0.00095EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/04/09 9:28 p.m.•1 views

CVE-2026-33786

An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon chassisd of Juniper Networks Junos OS on SRX1600, SRX2300 and SRX4300 allows a local attacker with low privileges to cause a complete Denial of Service DoS. When a specific 'show chassis' CLI comma...

6.8CVSS5.9AI score0.00095EPSS

ATTACKERKB•added 2026/04/09 9:26 p.m.•1 views

CVE-2026-21919

An Incorrect Synchronization vulnerability in the management daemon mgd of Juniper Networks Junos OS and Junos OS Evolved allows a network-based attacker with low privileges to cause a complete Denial-of-Service DoS of the management plane. When NETCONF sessions are quickly established and...

7.1CVSS5.8AI score0.00229EPSS

Vulnrichment•added 2026/04/09 9:26 p.m.•3 views

CVE-2026-21919 Junos OS and Junos OS Evolved: A high frequency of connecting and disconnecting NETCONF sessions causes management unavailability

7.1CVSS5.7AI score0.00229EPSS

Cvelist•added 2026/04/09 9:24 p.m.•16 views

CVE-2026-33793 Junos OS and Junos OS Evolved: When an unsigned Python op script configuration is present, a local low privileged user can compromise the system

An Execution with Unnecessary Privileges vulnerability in the User Interface UI of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker to gain root privileges, thus compromising the system. When a configuration that allows unsigned Python op scripts is present o...

8.5CVSS0.00156EPSS

CVE•added 2026/04/09 9:24 p.m.•12 views

CVE-2026-33793

CVE-2026-33793 describes an Execution with Unnecessary Privileges in the Junos OS/Junos OS Evolved UI. If a device has a configuration that allows unsigned Python op scripts, a non-root user can run malicious op scripts and escalate to root-equivalent privileges, compromising the system. Affected...

8.5CVSS6AI score0.00156EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/04/09 9:24 p.m.•3 views

CVE-2026-33793

8.5CVSS6AI score0.00156EPSS

Vulnrichment•added 2026/04/09 9:24 p.m.•0 views

CVE-2026-33793 Junos OS and Junos OS Evolved: When an unsigned Python op script configuration is present, a local low privileged user can compromise the system

8.5CVSS5.9AI score0.00156EPSS