CVE-2024-21615

CVE-2024-21615 concerns Juniper Networks Junos OS and Junos OS Evolved. The root cause is an Incorrect Default Privileges condition that, when NETCONF traceoptions are configured, can allow a local, low-privileged user to access confidential information after a super-user performs certain NETCONF...

CVE-2024-21610

Summary (CVE-2024-21610) : A vulnerability in Juniper Networks Junos OS cosd (Class of Service daemon) on MX Series allows an authenticated, low-privileged attacker to cause a limited DoS by handling specific low-privileged commands (via NETCONF, SSH, or Telnet) on behalf of mgd; mgd processes ca...

CVE-2024-21610 Junos OS: If in a scaled CoS scenario information on CoS state is gathered mgd processes get stuck

An Improper Handling of Exceptional Conditions vulnerability in the Class of Service daemon cosd of Juniper Networks Junos OS allows an authenticated, network-based attacker with low privileges to cause a limited Denial of Service DoS. In a scaled CoS scenario with 1000s of interfaces, when...

The vulnerability in the implementation of the NETCONF protocol for Cisco IOS XE allows a attacker to elevate their privileges to the root level.

The vulnerability of the NETCONF protocol implementation in Cisco IOS XE operating systems is related to the use of an incomplete blacklist when processing input data. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the root level...

PT-2024-2854 · Juniper Networks · Junos Evolved +1

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.2R3-S7 Junos OS versions 21.4 through 21.4R3-S5 Junos OS versions 22.1 through 22.1R3-S5 Junos OS versions 22.2 through 22.2R3-S3 Junos OS versions 22.3 through 22.3R3-S2 Junos OS versions 22.4 through 22.4R3 Jun...

Cisco IOS XE Software NETCONF/RESTCONF IPv4 Access Control List Bypass (cisco-sa-dmi-acl-bypass-Xv8FO8Vz)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in the data model interface DMI services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access resources that should have been protected by a configured IPv...

CVE-2024-20316

A vulnerability in the data model interface DMI services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access resources that should have been protected by a configured IPv4 access control list ACL. This vulnerability is due to improper handling of error conditions wh...

CVE-2024-20278

A vulnerability in the NETCONF feature of Cisco IOS XE Software could allow an authenticated, remote attacker to elevate privileges to root on an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending craft...

CVE-2024-20278

CVE-2024-20278 is a Cisco IOS XE NETCONF vulnerability. The issue arises from improper validation of user-supplied input in the NETCONF feature, enabling an authenticated, remote attacker to escalate privileges from Administrator to root on an affected device. The documented impact includes privi...

CVE-2024-20278

A vulnerability in the NETCONF feature of Cisco IOS XE Software could allow an authenticated, remote attacker to elevate privileges to root on an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending craft...

CVE-2024-20278

A vulnerability in the NETCONF feature of Cisco IOS XE Software could allow an authenticated, remote attacker to elevate privileges to root on an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending craft...

CVE-2024-20316

A vulnerability in the data model interface DMI services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access resources that should have been protected by a configured IPv4 access control list ACL. This vulnerability is due to improper handling of error conditions wh...

CVE-2024-20316

A vulnerability in the data model interface DMI services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access resources that should have been protected by a configured IPv4 access control list ACL. This vulnerability is due to improper handling of error conditions wh...

CVE-2024-20316

CVE-2024-20316 affects Cisco IOS XE Software with the Data Model Interface (DMI) when an IPv4 ACL is updated via NETCONF/RESTCONF. The issue stems from improper error handling that can reorder ACEs in an updated ACL, potentially allowing access to resources that should be protected. Concrete deta...

Cisco IOS XE Software NETCONF/RESTCONF IPv4 Access Control List Bypass Vulnerability

A vulnerability in the data model interface DMI services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access resources that should have been protected by a configured IPv4 access control list ACL. This vulnerability is due to improper handling of error conditions wh...

Cisco IOS XE Software Privilege Escalation Vulnerability

A vulnerability in the NETCONF feature of Cisco IOS XE Software could allow an authenticated, remote attacker to elevate privileges to root on an affected device. This vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending craft...

PT-2024-2707 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to the NETCONF feature of Cisco IOS XE Software, where improper validation of user-supplied input could allow an authenticated, remote attacker to elevate...

PT-2024-2551 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software affected versions not specified Description: The issue is related to improper handling of error conditions in the Data Model Interface DMI services of Cisco IOS XE Software when a device administrator updates an IPv4...

NETCONF Protocol / Subsystem over SSH Detection (SSH Login)

SSH login-based detection of services supporting the NETCONF protocol / subsystem over SSH. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2024-21614

An Improper Check for Unusual or Exceptional Conditions vulnerability in Routing Protocol Daemon RPD of Juniper Networks Junos OS and Junos OS Evolved allows a network-based, unauthenticated attacker to cause rpd to crash, leading to Denial of Service DoS. On all Junos OS and Junos OS Evolved...