CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

Cvelist•added 2026/05/26 12:0 a.m.•35 views

CVE-2026-48687

FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the Juniper router integration plugin. The log function in src/juniperplugin/fastnetmonjuniper.php lines 117-118 constructs shell commands by concatenating the $msg parameter directly into exec calls:...

0.00527EPSS

Exploits1References3

CNNVD•added 2026/05/26 12:0 a.m.•7 views

FastNetMon 安全漏洞

FastNetMon is a high-performance DDoS detector/sensor developed by Pavel Odintsov, based on multiple packet capture engines. Versions of FastNetMon prior to 1.2.9 contain security vulnerabilities. These vulnerabilities stem from the lack of validation or cleaning of IP address variables in the...

8.1CVSS5.8AI score0.00036EPSS

Exploits0References2

ATTACKERKB•added 2026/01/27 8:32 p.m.•1 views

CVE-2025-21589

An Authentication Bypass Using an Alternate Path or Channel vulnerability in Juniper Networks Session Smart Router may allows a network-based attacker to bypass authentication and take administrative control of the device. This issue affects Session Smart Router: from 5.6.7 before 5.6.17, from...

9.8CVSS5.9AI score0.00041EPSS

Exploits0References4Affected Software3

OSV•added 2021/10/19 7:15 p.m.•3 views

CVE-2021-31349

The usage of an internal HTTP header created an authentication bypass vulnerability CWE-287, allowing an attacker to view internal files, change settings, manipulate services and execute arbitrary code. This issue affects all Juniper Networks 128 Technology Session Smart Router versions prior to...

9.8CVSS5.9AI score0.00752EPSS

Exploits0References1

Tenable Nessus•added 2019/04/19 12:0 a.m.•9 views

Juniper JunOS Router Version Detection

Binary data 700599.prm...

7.3AI score

Exploits0

BDU FSTEC•added 2016/07/07 12:0 a.m.•2 views

The vulnerability of Juniper SRX 240 router microprogramming software allows a hacker to execute arbitrary code.

The Juniper SRX 240 router software contains a vulnerability that allows an attacker to execute arbitrary code as a result of a “clickjacking” attack...

4.3CVSS6AI score0.00243EPSS

Exploits0References4Affected Software1

BDU FSTEC•added 2016/07/07 12:0 a.m.•1 views

The vulnerability of Juniper SRX 240 microprogramming software allows a hacker to execute arbitrary Java scripts in the context of the user’s browser.

The Juniper SRX 240 router software contains a vulnerability in the index.php module, allowing an attacker to execute arbitrary Java scripts in the user’s browser context due to insufficient filtering of service-specific symbols...

4.3CVSS5.8AI score0.00296EPSS

Exploits1References4Affected Software1

BDU FSTEC•added 2016/07/07 12:0 a.m.•1 views

The vulnerability of Juniper SRX 240 router microprogramming software, allowing a hacker to execute arbitrary commands

The Juniper SRX 240 router software contains a vulnerability in the Sajax AJAX library, allowing an attacker to execute any commands due to the lack of validation of request parameters by the sajaxhandleclient function...

9CVSS5.7AI score0.08647EPSS

Exploits1References5Affected Software1

BDU FSTEC•added 2016/07/07 12:0 a.m.•1 views

The vulnerability of Juniper SRX 240 router microprogramming software allows a hacker to execute arbitrary code.

The Juniper SRX 240 router software contains a vulnerability in the SRX Web Authentication service. This vulnerability allows an attacker to execute arbitrary code due to the lack of control over input parameters on the page where user authentication takes place...

4.3CVSS6AI score0.00257EPSS

Exploits1References4Affected Software1

BDU FSTEC•added 2016/07/07 12:0 a.m.•3 views

The vulnerability of Juniper SRX 240 router microprogramming software allows a attacker to bypass the CSRF protection of the J-Web interface.

The Juniper SRX 240 router software contains a vulnerability in the Sajax AJAX library, which stems from the lack of checking the “csrftoken” parameter for GET requests...

5.1CVSS5.5AI score0.0009EPSS

Exploits0References4Affected Software1

BDU FSTEC•added 2016/07/07 12:0 a.m.•2 views

The vulnerability of Juniper SRX 240 router microprogramming software allows a attacker to trigger buffer overflows.

The Juniper SRX 240 router software contains a vulnerability that allows a attacker to cause a service failure or execute arbitrary code due to overflow of the flowd buffer when processing multiple telnet messages...

6.8CVSS6.2AI score0.05942EPSS

Exploits0References4Affected Software1

BDU FSTEC•added 2016/07/07 12:0 a.m.•1 views

The vulnerability of Juniper SRX 240 router microprogramming software, which allows a hacker to trigger a maintenance failure.

The Juniper SRX 240 router software contains a vulnerability that allows any user registered in the system and having remote access to the device to trigger a situation that causes resource exhaustion overloading of memory, loading of the processor. The vulnerability is related to the search for...

6.8CVSS6.7AI score0.0416EPSS

Exploits10References4Affected Software1

Tenable Nessus•added 2011/08/22 12:0 a.m.•29 views

Juniper Junos ICMP Ping 'composite next-hop' Remote DoS (PSN-2011-07-297)

According to its self-reported version number, the remote Juniper router is running a version of Junos that is affected by a denial of service vulnerability. Sending an ICMP ping with the record-route or timestamp options can crash an L3VPN PE router with either of the following configurations : ...

5.6AI score

Exploits0References1

Tenable Nessus•added 2005/01/27 12:0 a.m.•12 views

Juniper Router JUNOS Remote DoS

Binary data 2562.prm...

5CVSS7.3AI score0.05783EPSS

Exploits0References2