Lucene search
K

551 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2021-35648

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: FTS. Supported versions that are affected are 8.0.26 and prior. Easily exploitable...

4.9CVSS5.4AI score0.01935EPSS
Exploits0References2
CVE
CVE
added 2025/08/12 5:10 p.m.31 views

CVE-2025-50163

CVE-2025-50163 affects Windows Routing and Remote Access Service (RRAS). The issue is a heap-based buffer overflow in RRAS that enables remote code execution over the network. Exploitation is network-based (AV:N) with low attack complexity, no privileges required, but user interaction is required...

8.8CVSS8.1AI score0.00843EPSS
Exploits0References1Affected Software7
OSV
OSV
added 2025/08/12 3:15 p.m.3 views

CVE-2024-38805

EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service...

6.3CVSS7AI score
Exploits0References1
NVD
NVD
added 2025/08/12 3:15 p.m.6 views

CVE-2024-38805

EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service...

6.3CVSS0.00193EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/12 2:13 p.m.9 views

CVE-2024-38805 iSCSI Remote Memory Corruption and Denial of Service

EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service...

6.3CVSS0.00193EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-22110

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.33 and prior. Easily...

4.9CVSS6AI score0.00925EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/13 3:20 p.m.17 views

CVE-2025-52984

A NULL Pointer Dereference vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause impact to the availability of the device. When static route points to a reject next hop and a gNMI query is...

8.2CVSS7.2AI score0.00388EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/13 3:20 p.m.23 views

CVE-2025-52964

A Reachable Assertion vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When the device receives a specific BGP UPDATE packet, the rpd crashes and restarts...

7.1CVSS7AI score0.00259EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/13 3:20 p.m.19 views

CVE-2025-52981

An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX1600, SRX2300, SRX 4000 Series, and SRX5000 Series with SPC3 allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. If a sequen...

8.7CVSS7.2AI score0.00445EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/13 3:20 p.m.9 views

CVE-2025-52983

A UI Discrepancy for Security Feature vulnerability in the UI of Juniper Networks Junos OS on VM Host systems allows a network-based, unauthenticated attacker to access the device. On VM Host Routing Engines RE, even if the configured public key for root has been removed, remote users which are i...

8.6CVSS7.4AI score0.00604EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/13 3:20 p.m.14 views

CVE-2025-6549

An Incorrect Authorization vulnerability in the web server of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to reach the Juniper Web Device Manager J-Web. When Juniper Secure connect JSC is enabled on specific interfaces, or multiple interfaces are...

6.9CVSS7.2AI score0.00208EPSS
Exploits0References1
NVD
NVD
added 2025/07/11 4:15 p.m.6 views

CVE-2025-6549

An Incorrect Authorization vulnerability in the web server of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to reach the Juniper Web Device Manager J-Web. When Juniper Secure connect JSC is enabled on specific interfaces, or multiple interfaces are...

6.9CVSS0.00208EPSS
Exploits0References1
NVD
NVD
added 2025/07/11 4:15 p.m.5 views

CVE-2025-52985

A Use of Incorrect Operator vulnerability in the Routing Engine firewall of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to bypass security restrictions. When a firewall filter which is applied to the lo0 or re:mgmt interface references a prefix list with...

6.9CVSS0.00238EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/11 3:11 p.m.4 views

CVE-2025-6549 Junos OS: SRX Series: J-Web can be exposed on additional interfaces

An Incorrect Authorization vulnerability in the web server of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to reach the Juniper Web Device Manager J-Web. When Juniper Secure connect JSC is enabled on specific interfaces, or multiple interfaces are...

6.9CVSS7.2AI score0.00208EPSS
Exploits0References1
CVE
CVE
added 2025/07/11 3:11 p.m.33 views

CVE-2025-6549

CVE-2025-6549 (Junos OS SRX, J-Web exposure) is an Incorrect Authorization vulnerability in the web server that can allow an unauthenticated, network-based attacker to reach the Juniper Web Device Manager (J-Web). It arises when Juniper Secure Connect (JSC) is enabled on specific interfaces or mu...

6.9CVSS6.7AI score0.00208EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/11 3:11 p.m.8 views

CVE-2025-6549 Junos OS: SRX Series: J-Web can be exposed on additional interfaces

An Incorrect Authorization vulnerability in the web server of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to reach the Juniper Web Device Manager J-Web. When Juniper Secure connect JSC is enabled on specific interfaces, or multiple interfaces are...

6.9CVSS0.00208EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/11 3:9 p.m.4 views

CVE-2025-52983 Junos OS: After removing ssh public key authentication root can still log in

A UI Discrepancy for Security Feature vulnerability in the UI of Juniper Networks Junos OS on VM Host systems allows a network-based, unauthenticated attacker to access the device. On VM Host Routing Engines RE, even if the configured public key for root has been removed, remote users which are i...

8.6CVSS6.6AI score0.00604EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/11 3:9 p.m.10 views

CVE-2025-52983 Junos OS: After removing ssh public key authentication root can still log in

A UI Discrepancy for Security Feature vulnerability in the UI of Juniper Networks Junos OS on VM Host systems allows a network-based, unauthenticated attacker to access the device. On VM Host Routing Engines RE, even if the configured public key for root has been removed, remote users which are i...

8.6CVSS0.00604EPSS
Exploits0References2
CVE
CVE
added 2025/07/11 3:8 p.m.23 views

CVE-2025-52982

Juniper Junos OS MX Series with MS-MPC SIP ALG is affected. When two or more SIP-processing service sets run, an improper resource shutdown can cause the MS-MPC to crash and restart, enabling unauthenticated network-based DoS. Affected versions: all before 21.2R3-S9; 21.4 from 21.4R1; 22.2 before...

8.2CVSS6.7AI score0.00378EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/07/09 12:0 a.m.5 views

Juniper Junos OS Vulnerability (JSA100090)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA100090 advisory. - A NULL Pointer Dereference vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based...

8.2CVSS5.7AI score0.00388EPSS
Exploits0References2
Rows per page
Query Builder