Lucene search
K

553 matches found

NVD
NVD
added 2024/10/11 4:15 p.m.16 views

CVE-2024-47508

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...

7.1CVSS0.00375EPSS
Exploits0References1
NVD
NVD
added 2024/10/11 4:15 p.m.11 views

CVE-2024-47489

An Improper Handling of Exceptional Conditions vulnerability in the Packet Forwarding Engine pfe of the Juniper Networks Junos OS Evolved on ACX Series devices allows an unauthenticated, network based attacker sending specific transit protocol traffic to cause a partial Denial of Service DoS to...

6.9CVSS0.00631EPSS
Exploits0References1
NVD
NVD
added 2024/10/11 4:15 p.m.21 views

CVE-2024-39547

An Improper Handling of Exceptional Conditions vulnerability in the rpd-server of Juniper Networks Junos OS and Junos OS Evolved within cRPD allows an unauthenticated network-based attacker sending crafted TCP traffic to the routing engine RE to cause a CPU-based Denial of Service DoS. If special...

8.7CVSS0.00927EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/11 3:37 p.m.21 views

CVE-2024-47506 Junos OS: SRX Series: A large amount of traffic being processed by ATP Cloud can lead to a PFE crash

A Deadlock vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When a large amount of traffic is processed by ATP Cloud inspection, a deadlock can occur which will result i...

8.2CVSS0.00276EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/11 3:37 p.m.13 views

CVE-2024-47506 Junos OS: SRX Series: A large amount of traffic being processed by ATP Cloud can lead to a PFE crash

A Deadlock vulnerability in the packet forwarding engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When a large amount of traffic is processed by ATP Cloud inspection, a deadlock can occur which will result i...

8.2CVSS7AI score0.00276EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/11 3:33 p.m.23 views

CVE-2024-47504 Junos OS: SRX5000 Series: Receipt of a specific malformed packet will cause a flowd crash

An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine pfe Juniper Networks Junos OS on SRX5000 Series allows an unauthenticated, network based attacker to cause a Denial of Service Dos. When a non-clustered SRX5000 device receives a specifically malformed...

8.7CVSS0.00594EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/11 3:33 p.m.23 views

CVE-2024-47504 Junos OS: SRX5000 Series: Receipt of a specific malformed packet will cause a flowd crash

An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine pfe Juniper Networks Junos OS on SRX5000 Series allows an unauthenticated, network based attacker to cause a Denial of Service Dos. When a non-clustered SRX5000 device receives a specifically malformed...

8.7CVSS7AI score0.00594EPSS
Exploits0References1
CVE
CVE
added 2024/10/11 3:33 p.m.73 views

CVE-2024-47504

CVE-2024-47504 affects Juniper Networks Junos OS on SRX5000 Series. Vulnerability arises from improper validation of a specific input type in the packet forwarding engine (pfe), allowing an unauthenticated, network-based attacker to trigger a flowd crash and DoS by sending a malformed packet to n...

8.7CVSS7.6AI score0.00594EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/10/11 3:28 p.m.31 views

CVE-2024-47497 Junos OS: SRX Series, QFX Series, MX Series and EX Series: Receiving specific HTTPS traffic causes resource exhaustion

An Uncontrolled Resource Consumption vulnerability in the http daemon httpd of Juniper Networks Junos OS on SRX Series, QFX Series, MX Series and EX Series allows an unauthenticated, network-based attacker to cause Denial-of-Service DoS. An attacker can send specific HTTPS connection requests to...

8.7CVSS0.00575EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/11 3:22 p.m.20 views

CVE-2024-47489 Junos OS Evolved: ACX Series: Receipt of specific transit protocol packets is incorrectly processed by the RE

An Improper Handling of Exceptional Conditions vulnerability in the Packet Forwarding Engine pfe of the Juniper Networks Junos OS Evolved on ACX Series devices allows an unauthenticated, network based attacker sending specific transit protocol traffic to cause a partial Denial of Service DoS to...

6.9CVSS0.00631EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/11 3:21 p.m.14 views

CVE-2024-39563 Junos Space: Remote Command Execution (RCE) vulnerability in web application

A Command Injection vulnerability in Juniper Networks Junos Space allows an unauthenticated, network-based attacker sending a specially crafted request to execute arbitrary shell commands on the Junos Space Appliance, leading to remote command execution by the web application, gaining complete...

7.3CVSS8AI score0.01289EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/11 3:21 p.m.24 views

CVE-2024-39563 Junos Space: Remote Command Execution (RCE) vulnerability in web application

A Command Injection vulnerability in Juniper Networks Junos Space allows an unauthenticated, network-based attacker sending a specially crafted request to execute arbitrary shell commands on the Junos Space Appliance, leading to remote command execution by the web application, gaining complete...

7.3CVSS0.01289EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/25 12:0 a.m.12 views

PT-2024-7136

Name of the Vulnerable Software and Affected Versions Junos OS Evolved versions prior to 21.4R3-S9-EVO Junos OS Evolved versions 22.2 prior to 22.2R3-S4-EVO Junos OS Evolved version 22.4 prior to 22.4R3-S3-EVO Junos OS Evolved versions 23.2 prior to 23.2R2-S1-EVO Junos OS Evolved versions 23.4...

8.7CVSS5.9AI score0.00612EPSS
Exploits0References9
NVD
NVD
added 2024/08/29 11:15 a.m.27 views

CVE-2024-5624

Reflected Cross-Site Scripting XSS in Shift Logbook application of B&R APROL = R 4.4-00P3 may allow a network-based attacker to execute arbitrary JavaScript code in the context of the user's browser session...

6.1CVSS0.00239EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/29 8:53 a.m.38 views

CVE-2024-5624 Reflected Cross-Site Scripting (XSS) in Shift Logbook application of B&R APROL

Reflected Cross-Site Scripting XSS in Shift Logbook application of B&R APROL = R 4.4-00P3 may allow a network-based attacker to execute arbitrary JavaScript code in the context of the user's browser session...

5.1CVSS0.00239EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2024/08/28 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-7029

Commands can be injected over the network and executed without authentication...

9.8CVSS7.3AI score0.38998EPSS
Exploits5References1
Tenable Nessus
Tenable Nessus
added 2024/08/28 12:0 a.m.12 views

Juniper Junos OS DoS (JSA82988)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA82988 advisory. - A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated,...

8.7CVSS5.7AI score0.00476EPSS
Exploits0References2
CVE
CVE
added 2024/07/31 11:0 p.m.88 views

CVE-2024-38182

CVE-2024-38182 is a Microsoft Dynamics 365 elevation-of-privilege vulnerability described as weak authentication that allows an unauthenticated, network-based attacker to escalate privileges. Connected sources confirm the issue affects Microsoft Dynamics 365 Field Service On-Premises version 7 (o...

9.8CVSS9.2AI score0.00884EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/07/11 5:15 p.m.23 views

CVE-2024-39533

An Unimplemented or Unsupported Feature in the UI vulnerability in Juniper Networks Junos OS on QFX5000 Series and EX4600 Series allows an unauthenticated, network-based attacker to cause a minor integrity impact to downstream networks.If one or more of the following match conditions...

6.9CVSS0.00296EPSS
Exploits0References1
CVE
CVE
added 2024/07/11 4:32 p.m.56 views

CVE-2024-39553

CVE-2024-39553 affects Juniper Networks Junos OS Evolved sampling service (inline jflow). A Resource Exposure to Wrong Sphere vulnerability allows an unauthenticated, network-based attacker to send arbitrary data to the device, causing the msvcsd process to crash and yielding limited DoS while no...

6.9CVSS6.7AI score0.00398EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder