Lucene search
K

372 matches found

OSV
OSV
added 2021/04/22 8:15 p.m.5 views

CVE-2021-0236

Due to an improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved the Routing Protocol Daemon RPD service, upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, crashes and restarts causing a Denial of...

6.5CVSS5.8AI score0.00847EPSS
Exploits0References1
Prion
Prion
added 2021/04/22 8:15 p.m.29 views

Design/Logic Flaw

In segment routing traffic engineering SRTE environments where the BGP Monitoring Protocol BMP feature is enable, a vulnerability in the Routing Protocol Daemon RPD process of Juniper Networks Junos OS allows an attacker to send a specific crafted BGP update message causing the RPD service to cor...

5CVSS7.4AI score0.0102EPSS
Exploits0References1Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/04/13 12:0 a.m.6 views

The vulnerability of the RPD module in the JunOS operating system and JunOS Evolved allows a intruder to trigger a maintenance failure.

The vulnerability of the RPD module in the JunOS operating system and JunOS Evolved is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

7.5CVSS7.2AI score0.01276EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/02/25 12:0 a.m.5 views

The vulnerability of the Routing Protocol Daemon (RPD) service in the Junos operating system allows a attacker to cause a service failure.

The vulnerability of the Routing Protocol Daemon RPD in the Junos operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

8.8CVSS7.6AI score0.0065EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/25 12:0 a.m.5 views

The vulnerability of the Routing Protocol Daemon (RPD) service in the Junos operating system allows a attacker to cause a service failure.

The vulnerability of the Routing Protocol Daemon RPD in the Junos operating system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

10CVSS7.7AI score0.01317EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2021/01/15 6:15 p.m.4 views

CVE-2021-0211

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon RPD service allows an attacker to send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain...

10CVSS5.8AI score0.01317EPSS
Exploits0References1
NVD
NVD
added 2021/01/15 6:15 p.m.19 views

CVE-2021-0208

An improper input validation vulnerability in the Routing Protocol Daemon RPD service of Juniper Networks Junos OS allows an attacker to send a malformed RSVP packet when bidirectional LSPs are in use, which when received by an egress router crashes the RPD causing a Denial of Service DoS...

8.8CVSS8.6AI score0.0065EPSS
Exploits0References3
OSV
OSV
added 2021/01/15 6:15 p.m.3 views

CVE-2021-0208

An improper input validation vulnerability in the Routing Protocol Daemon RPD service of Juniper Networks Junos OS allows an attacker to send a malformed RSVP packet when bidirectional LSPs are in use, which when received by an egress router crashes the RPD causing a Denial of Service DoS...

8.8CVSS5.8AI score0.0065EPSS
Exploits0References3
Prion
Prion
added 2021/01/15 6:15 p.m.13 views

Input validation

An improper input validation vulnerability in the Routing Protocol Daemon RPD service of Juniper Networks Junos OS allows an attacker to send a malformed RSVP packet when bidirectional LSPs are in use, which when received by an egress router crashes the RPD causing a Denial of Service DoS...

3.3CVSS8.5AI score0.0065EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2020/07/17 7:15 p.m.6 views

CVE-2020-1640

An improper use of a validation framework when processing incoming genuine BGP packets within Juniper Networks RPD routing protocols process daemon allows an attacker to crash RPD thereby causing a Denial of Service DoS condition. This framework requires these packets to be passed. By continuousl...

7.5CVSS7.1AI score0.01388EPSS
Exploits0References1
OSV
OSV
added 2020/04/08 8:15 p.m.6 views

CVE-2020-1629

A race condition vulnerability on Juniper Network Junos OS devices may cause the routing protocol daemon RPD process to crash and restart while processing a BGP NOTIFICATION message. This issue affects Juniper Networks Junos OS: 16.1 versions prior to 16.1R7-S6; 16.2 versions prior to 16.2R2-S11;...

5.9CVSS5.8AI score0.00666EPSS
Exploits0References1
0day.today
0day.today
added 2020/03/19 12:0 a.m.426 views

pppd 2.4.8 Buffer Overflow Exploit

Exploit Title: Point to Point Protocol Daemon versions 2.4.2 through 2.4.8 are vulnerable to buffer overflow - remote Author: nu11secur1ty Date: 2020-03-18 Vendor: Point to Point Protocol Daemon Link: https://github.com/nu11secur1ty/Windows10Exploits/tree/master/Undefined/CVE-2020-8597 CVE:...

9.8CVSS0.5AI score0.19431EPSS
Exploits3
Packet Storm
Packet Storm
added 2020/03/18 12:0 a.m.187 views

pppd 2.4.8 Buffer Overflow

Exploit Title: Point to Point Protocol Daemon versions 2.4.2 through 2.4.8 are vulnerable to buffer overflow - remote Author: nu11secur1ty Date: 2020-03-18 Vendor: Point to Point Protocol Daemon Link: https://github.com/nu11secur1ty/Windows10Exploits/tree/master/Undefined/CVE-2020-8597 CVE:...

7.5CVSS0.8AI score0.19431EPSS
Exploits3
CISA
CISA
added 2020/03/05 12:0 a.m.14 views

Point-to-Point Protocol Daemon Vulnerability

The CERT Coordination Center CERT/CC has released information on a vulnerability affecting Point-to-Point Protocol Daemon versions 2.4.2 through 2.4.8. A remote attacker can exploit this vulnerability to take control of an affected system. Point-to-Point Protocol Daemon is used to establish...

6.7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/02/24 12:0 a.m.37 views

Debian DSA-4632-1 : ppp - security update

Ilja Van Sprundel reported a logic flaw in the Extensible Authentication Protocol EAP packet parser in the Point-to-Point Protocol Daemon pppd. An unauthenticated attacker can take advantage of this flaw to trigger a stack-based buffer overflow, leading to denial of service pppd daemon crash. C...

9.8CVSS8.8AI score0.19431EPSS
Exploits3References6
OpenWrt
OpenWrt
added 2020/02/21 12:0 a.m.118 views

Security Advisory 2020-02-21-1 - ppp buffer overflow vulnerability (CVE-2020-8597)

DESCRIPTION A remotely exploitable vulnerability was found in Point-to-Point Protocol Daemon pppd, which has a significant potential impact due to the possibility of remote code execution prior to authentication. OpenWrt by default enables the FORTIFYSOURCE=1 compiler macro which introduces...

9.8CVSS9.3AI score0.19431EPSS
Exploits3
BDU FSTEC
BDU FSTEC
added 2020/02/11 12:0 a.m.9 views

The vulnerability of the Junos Dynamic Host Configuration Protocol Daemon (JDHCPD) in the operating system allows a attacker to execute arbitrary commands with root privileges.

The vulnerability of the Junos Dynamic Host Configuration Protocol Daemon JDHCPD operating system is related to the failure to eliminate special elements used in the operating system’s commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root...

7.1CVSS7.9AI score0.00787EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/11 12:0 a.m.3 views

The vulnerability of the Junos OS’ Routing Protocol Daemon (RPD) allows a attacker to cause a service failure.

The vulnerability of the Junos OS’ Routing Protocol Daemon RPD is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

6.8CVSS6.5AI score0.01196EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2020/02/10 12:0 a.m.56 views

Debian: Security Advisory (DLA-2097-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.6AI score0.19431EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2020/01/20 12:0 a.m.42 views

Junos OS: pccd DoS (JSA10980)

According to its self-reported version number, the remote Juniper Junos device is affected by a vulnerability in the path computational element protocol daemon pccd process. An unauthenticated, remote attacker can exploit this issue, by sending malformed Path Computation Element Protocol PCEP...

7.5CVSS7.4AI score0.01075EPSS
Exploits0References2
Rows per page
Query Builder