123 matches found
CVE-2020-1670 Junos OS: EX4300 Series: High CPU load due to receipt of specific IPv4 packets
On Juniper Networks EX4300 Series, receipt of a stream of specific IPv4 packets can cause Routing Engine RE high CPU load, which could lead to network protocol operation issue and traffic interruption. This specific packets can originate only from within the broadcast domain where the device is...
Juniper Junos Kernel Crash (vmcore) or FPC Crash (JSA11040)
According to its self-reported version, the Junos OS installed on the remote host is affected by a denial of service DoS vulnerability. On Juniper Networks Junos OS devices, a stream of TCP packets sent to the Routing Engine RE may cause mbuf leak which can lead to Flexible PIC Concentrator FPC...
CVE-2020-1653
On Juniper Networks Junos OS devices, a stream of TCP packets sent to the Routing Engine RE may cause mbuf leak which can lead to Flexible PIC Concentrator FPC crash or the system to crash and restart vmcore. This issue can be trigged by IPv4 or IPv6 and it is caused only by TCP packets. This iss...
Juniper Networks Junos OS Buffer Overflow Vulnerability
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS. An attacker could exploit this vulnerability by sending TCP...
Juniper Networks Junos Elevation of Privilege Vulnerability
Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in the Juniper Networks Junos OS configured with a dual Routing Engine RE, Virtual Chassis...
The vulnerability of the Routing Engine module of the JunOS operating system, which allows a hacker to trigger a service failure.
The vulnerability of the Routing Engine module of the JunOS operating system is related to the failure to release resources after the expiration of their useful lifespan. Exploiting this vulnerability allows a malicious actor to cause service failures through specially created IPv6 traffic...
Junos OS: Improper handling of specific IPv6 packets (JSA10982)
According to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability DDOS: Specific IPv6 packets sent by clients processed by the Routing Engine RE are improperly handled. A remote unauthenticated attacker can exploit this by sending...
CVE-2020-1603
Specific IPv6 packets sent by clients processed by the Routing Engine RE are improperly handled. These IPv6 packets are designed to be blocked by the RE from egressing the RE. Instead, the RE allows these specific IPv6 packets to egress the RE, at which point a mbuf memory leak occurs within the...
CVE-2020-1603
Specific IPv6 packets sent by clients processed by the Routing Engine RE are improperly handled. These IPv6 packets are designed to be blocked by the RE from egressing the RE. Instead, the RE allows these specific IPv6 packets to egress the RE, at which point a mbuf memory leak occurs within the...
CVE-2020-1604
On EX4300, EX4600, QFX3500, and QFX5100 Series, a vulnerability in the IP firewall filter component may cause the firewall filter evaluation of certain packets to fail. This issue only affects firewall filter evaluation of certain packets destined to the device Routing Engine RE. This issue does...
Memory corruption
Specific IPv6 packets sent by clients processed by the Routing Engine RE are improperly handled. These IPv6 packets are designed to be blocked by the RE from egressing the RE. Instead, the RE allows these specific IPv6 packets to egress the RE, at which point a mbuf memory leak occurs within the...
Design/Logic Flaw
On EX4300, EX4600, QFX3500, and QFX5100 Series, a vulnerability in the IP firewall filter component may cause the firewall filter evaluation of certain packets to fail. This issue only affects firewall filter evaluation of certain packets destined to the device Routing Engine RE. This issue does...
CVE-2020-1603 Junos OS: Improper handling of specific IPv6 packets sent by clients eventually kernel crash (vmcore) the device.
Specific IPv6 packets sent by clients processed by the Routing Engine RE are improperly handled. These IPv6 packets are designed to be blocked by the RE from egressing the RE. Instead, the RE allows these specific IPv6 packets to egress the RE, at which point a mbuf memory leak occurs within the...
Juniper JSA10975
According to the self reported version of Junos OS on the remote device it is affected by a path traversal vulnerability with the Next-Generation Routing Engine. A local authenticated attacker can exploit this, to read sensitive file systems. Note that Nessus has not tested for this issue but has...
The vulnerability of the Routing Engine component of the Junos OS operating system, which allows a hacker to trigger a service failure
The vulnerability of the Routing Engine component of the Junos OS operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted IPv6 packets...
CVE-2019-0074
A path traversal vulnerability in NFX150 Series and QFX10K Series, EX9200 Series, MX Series and PTX Series devices with Next-Generation Routing Engine NG-RE allows a local authenticated user to read sensitive system files. This issue only affects NFX150 Series and QFX10K Series, EX9200 Series, MX...
CVE-2019-0074
A path traversal vulnerability in NFX150 Series and QFX10K Series, EX9200 Series, MX Series and PTX Series devices with Next-Generation Routing Engine NG-RE allows a local authenticated user to read sensitive system files. This issue only affects NFX150 Series and QFX10K Series, EX9200 Series, MX...
Path traversal
A path traversal vulnerability in NFX150 Series and QFX10K Series, EX9200 Series, MX Series and PTX Series devices with Next-Generation Routing Engine NG-RE allows a local authenticated user to read sensitive system files. This issue only affects NFX150 Series and QFX10K Series, EX9200 Series, MX...
The vulnerability of the JunOS operating system, related to errors in input/output operations, allows a perpetrator to trigger a service failure.
The vulnerability of the JunOS operating system is related to errors in input/output operations. Exploiting this vulnerability can allow an attacker to cause a service failure due to a disruption in communication between the routing engine RE and the packet forwarding engine PFE...
CVE-2019-0009
On EX2300 and EX3400 series, high disk I/O operations may disrupt the communication between the routing engine RE and the packet forwarding engine PFE. In a virtual chassis VC deployment, this issue disrupts communication between the VC members. This issue does not affect other Junos platforms...