188 matches found
CVE-2023-20040
A vulnerability in the NETCONF service of Cisco Network Services Orchestrator NSO could allow an authenticated, remote attacker to cause a denial of service DoS on an affected system that is running as the root user. To exploit this vulnerability, the attacker must be a member of the admin group...
CVE-2025-20214
A vulnerability in the Network Configuration Access Control Module NACM of Cisco IOS XE Software could allow an authenticated, remote attacker to obtain unauthorized read access to configuration or operational data. This vulnerability exists because a subtle change in inner API call behavior caus...
CVE-2025-20214
A vulnerability in the Network Configuration Access Control Module NACM of Cisco IOS XE Software could allow an authenticated, remote attacker to obtain unauthorized read access to configuration or operational data. This vulnerability exists because a subtle change in inner API call behavior caus...
CVE-2025-20214
A vulnerability in the Network Configuration Access Control Module NACM of Cisco IOS XE Software could allow an authenticated, remote attacker to obtain unauthorized read access to configuration or operational data. This vulnerability exists because a subtle change in inner API call behavior caus...
Juniper Junos OS Vulnerability (JSA88106)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA88106 advisory. - An Incorrect Default Permissions vulnerability in the command line interface CLI of Juniper Networks Junos OS Evolved allows a low privileged local attacker to view NETCON...
CVE-2024-39544
An Incorrect Default Permissions vulnerability in the command line interface CLI of Juniper Networks Junos OS Evolved allows a low privileged local attacker to view NETCONF traceoptions files, representing an exposure of sensitive information. On all Junos OS Evolved platforms, when NETCONF...
CVE-2024-39544 Junos OS Evolved: Low privileged local user able to view NETCONF traceoptions files
An Incorrect Default Permissions vulnerability in the command line interface CLI of Juniper Networks Junos OS Evolved allows a low privileged local attacker to view NETCONF traceoptions files, representing an exposure of sensitive information. On all Junos OS Evolved platforms, when NETCONF...
CVE-2024-39544 Junos OS Evolved: Low privileged local user able to view NETCONF traceoptions files
An Incorrect Default Permissions vulnerability in the command line interface CLI of Juniper Networks Junos OS Evolved allows a low privileged local attacker to view NETCONF traceoptions files, representing an exposure of sensitive information. On all Junos OS Evolved platforms, when NETCONF...
CVE-2024-39544
CVE-2024-39544 concerns an issue in Juniper Networks Junos OS Evolved where NETCONF traceoptions files can be read due to incorrect default permissions in the CLI. The vulnerability affects Junos OS Evolved where NETCONF traceoptions are configured, enabling a low-privileged local user to access ...
CVE-2024-39530
CVE-2024-39530 affects Juniper Networks Junos OS, specifically the chassis management daemon (chassisd). The vulnerability is an improper check for unusual or exceptional conditions that allows an unauthenticated, network-based attacker to trigger a DoS by causing chassisd to crash when accessing...
CVE-2024-39530 Junos OS: Attempting to access specific sensors on platforms not supporting these will lead to a chassisd crash
An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis management daemon chassisd of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. If an attempt is made to access specific sensors on platforms not...
CVE-2024-39562
A Missing Release of Resource after Effective Lifetime vulnerability the xinetd process, responsible for spawning SSH daemon sshd instances, of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to cause a Denial of Service DoS by blocking SSH access for legitimate...
CVE-2024-39562 Junos OS Evolved: A high rate of SSH connections causes a Denial of Service
A Missing Release of Resource after Effective Lifetime vulnerability the xinetd process, responsible for spawning SSH daemon sshd instances, of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to cause a Denial of Service DoS by blocking SSH access for legitimate...
CVE-2024-39562
Junos OS Evolved is affected by CVE-2024-39562 due to a Missing Release of Resource after Effective Lifetime in the xinetd process, which can crash and leave defunct sshd processes under high concurrent SSH load. This denial-of-service blocks SSH access and dependent SSH services (SFTP, Netconf o...
Juniper Junos OS Vulnerability (JSA75751)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA75751 advisory. - An Improper Handling of Exceptional Conditions vulnerability in the Class of Service daemon cosd of Juniper Networks Junos OS on MX Series allows an authenticated,...
Cisco IOS XE Software Privilege Escalation (cisco-sa-iosxe-priv-esc-seAx6NLX)
According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in the NETCONF feature of Cisco IOS XE Software could allow an authenticated, remote attacker to elevate privileges to root on an affected device. This vulnerability is due to improper...
CVE-2024-21615
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker to access confidential information on the system. On all Junos OS and Junos OS Evolved platforms, when NETCONF traceoptions are configured, and a super-user...
CVE-2024-21615
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker to access confidential information on the system. On all Junos OS and Junos OS Evolved platforms, when NETCONF traceoptions are configured, and a super-user...
CVE-2024-21615 Junos OS and Junos OS Evolved: A low-privileged user can access confidential information
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker to access confidential information on the system. On all Junos OS and Junos OS Evolved platforms, when NETCONF traceoptions are configured, and a super-user...
CVE-2024-21615 Junos OS and Junos OS Evolved: A low-privileged user can access confidential information
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker to access confidential information on the system. On all Junos OS and Junos OS Evolved platforms, when NETCONF traceoptions are configured, and a super-user...