Lucene search
K

551 matches found

Positive Technologies
Positive Technologies
added 2025/04/09 12:0 a.m.4 views

PT-2025-15858 · Juniper Networks · Junos Evolved +1

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.2R3-S9 Junos OS versions from 21.4 before 21.4R3-S10 Junos OS versions from 22.2 before 22.2R3-S6 Junos OS versions from 22.4 before 22.4R3-S4 Junos OS versions from 23.2 before 23.2R2-S2 Junos OS versions from...

8.7CVSS6.5AI score0.00372EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/04/09 12:0 a.m.8 views

Juniper Junos OS Vulnerability (JSA96467)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA96467 advisory. - An Improper Encoding or Escaping of Output vulnerability in the Sampling Route Record Daemon SRRD of Juniper Networks Junos OS allows an unauthenticated, network-based...

6.9CVSS5.7AI score0.00355EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/04/09 12:0 a.m.12 views

Juniper Junos OS Vulnerability (JSA96459)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA96459 advisory. - An Improper Input Validation vulnerability in the syslog stream TCP transport of Juniper Networks Junos OS on MX240, MX480, and MX960 devices with MX-SPC3 Security Service...

8.7CVSS5.7AI score0.00372EPSS
Exploits0References2
Talos Blog
Talos Blog
added 2025/03/31 11:0 a.m.6 views

Beers with Talos: Year in Review episode

Joe, Hazel, Bill and Dave break down Talos' Year in Review 2024 and discuss how and why cybercriminals have been leaning so heavily on attacks that are routed in stealth in simplicity. The team also provide insights into some of the topics of the report, including the top-targeted vulnerabilities...

7.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/03/27 6:8 a.m.15 views

CVE-2024-10210

An External Control of File Name or Path vulnerability in the APROL Web Portal used in B APROL 4.4-005P may allow an authenticated network-based attacker to access data from the file system...

8.4CVSS6.8AI score0.00408EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/27 5:33 a.m.9 views

CVE-2024-10206

A Server-Side Request Forgery vulnerability in the APROL Web Portal used in B APROL 4.4-00P5 may allow an unauthenticated network-based attacker to force the web server to request arbitrary URLs...

6.9CVSS7.2AI score0.00373EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/27 5:33 a.m.6 views

CVE-2024-10207

A Server-Side Request Forgery vulnerability in the APROL Web Portal used in B APROL 4.4-00P5 may allow an authenticated network-based attacker to force the web server to request arbitrary URLs...

5.3CVSS6.9AI score0.0033EPSS
Exploits0References1
NVD
NVD
added 2025/03/25 6:15 a.m.5 views

CVE-2024-10210

An External Control of File Name or Path vulnerability in the APROL Web Portal used in B&R APROL 4.4-005P may allow an authenticated network-based attacker to access data from the file system...

8.4CVSS0.00408EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/25 5:32 a.m.5 views

CVE-2024-10210 Path traversal in APROL Web Portal

An External Control of File Name or Path vulnerability in the APROL Web Portal used in B&R APROL 4.4-005P may allow an authenticated network-based attacker to access data from the file system...

8.4CVSS6.4AI score0.00408EPSS
Exploits0References1
NVD
NVD
added 2025/03/25 5:15 a.m.15 views

CVE-2024-10206

A Server-Side Request Forgery vulnerability in the APROL Web Portal used in B&R APROL 4.4-00P5 may allow an unauthenticated network-based attacker to force the web server to request arbitrary URLs...

6.9CVSS0.00373EPSS
Exploits0References1
CVE
CVE
added 2025/03/25 4:50 a.m.54 views

CVE-2024-45480

CVE-2024-45480 concerns B&R APROL’s AprolCreateReport component (versions before 4.4-00P5). The flaw is described as improper control of code generation, enabling an unauthenticated, network-based attacker to read local system files (code injection-related exposure) with high impact on confidenti...

9.2CVSS7.2AI score0.00375EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/25 4:43 a.m.14 views

CVE-2024-10208 Cross Site Scripting vulnerability in APROL Web Portal

An Improper Neutralization of Input During Web Page Generation vulnerability in the APROL Web Portal used in B&R APROL 4.4-00P5 may allow an authenticated network-based attacker to insert malicious code which is then executed in the context of the user’s browser session...

5.1CVSS0.00375EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/20 10:11 a.m.6 views

CVE-2024-12392 Server-Side Request Forgery (SSRF) in binary-husky/gpt_academic

A Server-Side Request Forgery SSRF vulnerability exists in binary-husky/gptacademic version git 310122f. The application has a functionality to download papers from arxiv.org, but the URL validation is incomplete. An attacker can exploit this vulnerability to make the application access any URL,...

6.5CVSS6.4AI score0.00561EPSS
Exploits1References1
OSV
OSV
added 2025/03/14 10:15 p.m.1 views

UBUNTU-CVE-2025-2295

EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service...

3.5CVSS6.7AI score0.00226EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2020-10703

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference was found in the libvirt API responsible introduced in upstream version 3.10.0, and fixed in libvirt 6.0.0, for fetching a storage po...

6.5CVSS6.8AI score0.02363EPSS
Exploits1References2
CVE
CVE
added 2025/01/09 6:16 p.m.82 views

CVE-2025-21598

CVE-2025-21598 is an out-of-bounds read vulnerability in Junos OS and Junos OS Evolved -rpd (routing protocol daemon). An unauthenticated, network-based attacker can send malformed BGP packets to a device with BGP trace options enabled, crashing rpd. Affected ranges include multiple Junos OS and ...

8.2CVSS7.8AI score0.00702EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2025/01/09 4:46 p.m.69 views

CVE-2025-21599

CVE-2025-21599 affects Juniper Networks Junos OS Evolved. The vulnerability is in the Juniper Tunnel Driver (jtd) where a memory misreference occurs after handling certain malformed IPv6 packets, causing kernel memory not to be freed and leading to memory exhaustion and a Denial of Service. Affec...

8.7CVSS7.5AI score0.00587EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/12/02 9:15 a.m.33 views

CVE-2024-10490

An “Authentication Bypass Using an Alternate Path or Channel” vulnerability in the OPC UA Server configuration required for B&R mapp Cockpit before 6.0, B&R mapp View before 6.0, B&R mapp Services before 6.0, B&R mapp Motion before 6.0 and B&R mapp Vision before 6.0 may be used by an...

8.4CVSS0.00469EPSS
Exploits0References1
NVD
NVD
added 2024/10/11 4:15 p.m.15 views

CVE-2024-47508

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...

7.1CVSS0.00375EPSS
Exploits0References1
NVD
NVD
added 2024/10/11 4:15 p.m.11 views

CVE-2024-47489

An Improper Handling of Exceptional Conditions vulnerability in the Packet Forwarding Engine pfe of the Juniper Networks Junos OS Evolved on ACX Series devices allows an unauthenticated, network based attacker sending specific transit protocol traffic to cause a partial Denial of Service DoS to...

6.9CVSS0.00631EPSS
Exploits0References1
Rows per page
Query Builder