Lucene search
K

123 matches found

CNNVD
CNNVD
added 2023/04/17 12:0 a.m.6 views

Juniper Networks Junos OS 代码问题漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A denial of service vulnerability exists in Juniper Networks Junos OS, which originates from a kernel crash when certain U...

4.6CVSS6.5AI score0.00288EPSS
Exploits0References2
NVD
NVD
added 2023/01/13 12:15 a.m.28 views

CVE-2023-22396

An Uncontrolled Resource Consumption vulnerability in TCP processing on the Routing Engine RE of Juniper Networks Junos OS allows an unauthenticated network-based attacker to send crafted TCP packets destined to the device, resulting in an MBUF leak that ultimately leads to a Denial of Service Do...

7.5CVSS7.5AI score0.00563EPSS
Exploits0References1
OSV
OSV
added 2023/01/13 12:15 a.m.4 views

CVE-2023-22396

An Uncontrolled Resource Consumption vulnerability in TCP processing on the Routing Engine RE of Juniper Networks Junos OS allows an unauthenticated network-based attacker to send crafted TCP packets destined to the device, resulting in an MBUF leak that ultimately leads to a Denial of Service Do...

7.5CVSS7AI score
Exploits0References1
Prion
Prion
added 2023/01/13 12:15 a.m.27 views

Design/Logic Flaw

An Uncontrolled Resource Consumption vulnerability in TCP processing on the Routing Engine RE of Juniper Networks Junos OS allows an unauthenticated network-based attacker to send crafted TCP packets destined to the device, resulting in an MBUF leak that ultimately leads to a Denial of Service Do...

5CVSS7.5AI score0.00563EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/12 12:0 a.m.7 views

CVE-2023-22396 Junos OS: Receipt of crafted TCP packets destined to the device results in MBUF leak leading to a Denial of Service (DoS)

An Uncontrolled Resource Consumption vulnerability in TCP processing on the Routing Engine RE of Juniper Networks Junos OS allows an unauthenticated network-based attacker to send crafted TCP packets destined to the device, resulting in an MBUF leak that ultimately leads to a Denial of Service Do...

7.5CVSS7.5AI score0.00563EPSS
Exploits0References1
CVE
CVE
added 2023/01/12 12:0 a.m.76 views

CVE-2023-22396

CVE-2023-22396 describes an Uncontrolled Resource Consumption vulnerability in the TCP processing on the Routing Engine of Juniper Networks Junos OS. An unauthenticated network-based attacker can send crafted TCP packets destined to a device interface (IPv4/IPv6), causing an MBUF leak and ultimat...

7.5CVSS7.5AI score0.00563EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/10/18 3:15 a.m.4 views

CVE-2022-22227

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated network-based attacker to cause a partial Denial of Service DoS. On receipt of specific IPv6 transit traffic,...

5.3CVSS5.8AI score0.00557EPSS
Exploits0References1
NVD
NVD
added 2022/10/18 3:15 a.m.17 views

CVE-2022-22227

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated network-based attacker to cause a partial Denial of Service DoS. On receipt of specific IPv6 transit traffic,...

5.3CVSS0.00557EPSS
Exploits0References1
Prion
Prion
added 2022/10/18 3:15 a.m.14 views

Design/Logic Flaw

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated network-based attacker to cause a partial Denial of Service DoS. On receipt of specific IPv6 transit traffic,...

5CVSS5.3AI score0.00557EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/18 2:46 a.m.8 views

CVE-2022-22227 Junos OS Evolved: ACX7000 Series: Specific IPv6 transit traffic gets exceptioned to the routing-engine which causes increased CPU utilization

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated network-based attacker to cause a partial Denial of Service DoS. On receipt of specific IPv6 transit traffic,...

5.3CVSS5.3AI score0.00557EPSS
Exploits0References1
NCSC
NCSC
added 2021/10/26 12:0 a.m.4 views

Vulnerability fixed in Juniper Junos OS

Juniper has fixed a vulnerability in Junos OS on the QFX5000 Series. The vulnerability results in potentially sensitive system information, including kernel versions, being leaked in communication between the routing engine and the packet forwarding engine. A malicious person with access to the...

5.3CVSS6.7AI score0.00815EPSS
Exploits0
NVD
NVD
added 2021/05/13 7:15 p.m.9 views

CVE-2021-29506

GraphHopper is an open-source Java routing engine. In GrassHopper from version 2.0 and before version 2.4, there is a regular expression injection vulnerability that may lead to Denial of Service. This has been patched in 2.4 and 3.0 See this pull request for the fix:...

6.5CVSS0.01404EPSS
Exploits0References3
OSV
OSV
added 2021/05/13 7:15 p.m.12 views

CVE-2021-29506

GraphHopper is an open-source Java routing engine. In GrassHopper from version 2.0 and before version 2.4, there is a regular expression injection vulnerability that may lead to Denial of Service. This has been patched in 2.4 and 3.0 See this pull request for the fix:...

6.5CVSS7.3AI score
Exploits0References3
Cvelist
Cvelist
added 2021/05/13 6:15 p.m.15 views

CVE-2021-29506 Navigate endpoint is vulnerable to regex injection that may lead to Denial of Service.

GraphHopper is an open-source Java routing engine. In GrassHopper from version 2.0 and before version 2.4, there is a regular expression injection vulnerability that may lead to Denial of Service. This has been patched in 2.4 and 3.0 See this pull request for the fix:...

6.5CVSS6.7AI score0.01404EPSS
Exploits0References3
CVE
CVE
added 2021/05/13 6:15 p.m.83 views

CVE-2021-29506

GraphHopper CVE-2021-29506 affects GrassHopper 2.0–2.4. The vulnerability is a regular expression injection that may cause Denial of Service. Root cause is in the navigation/regex handling in GrassHopper prior to 2.4. This has been patched in GraphHopper 2.4 and 3.0. Connected advisories and Red ...

6.5CVSS6.4AI score0.01404EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/05/13 12:0 a.m.6 views

graphhopper 资源管理错误漏洞

graphhopper is a software application. A fast and memory efficient Java routing engine, released under the Apache License 2.0. A security vulnerability exists in GraphHopper prior to versions 2.0 and 2.4. An attacker could use this vulnerability to cause a denial of service of the program...

6.5CVSS6.5AI score0.01404EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/04/13 12:0 a.m.5 views

The vulnerability of the Routing Engine module of the JunOS operating system, which allows a hacker to trigger a service failure.

The vulnerability of the Routing Engine module of the JunOS operating system is related to the operation of data out of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures...

7.5CVSS7.4AI score0.01591EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2020/10/16 9:15 p.m.4 views

CVE-2020-1686

On Juniper Networks Junos OS devices, receipt of a malformed IPv6 packet may cause the system to crash and restart vmcore. This issue can be trigged by a malformed IPv6 packet destined to the Routing Engine. An attacker can repeatedly send the offending packet resulting in an extended Denial of...

7.5CVSS7AI score0.01382EPSS
Exploits0References1
Prion
Prion
added 2020/10/16 9:15 p.m.22 views

Design/Logic Flaw

On Juniper Networks MX Series and EX9200 Series, in a certain condition the IPv6 Distributed Denial of Service DDoS protection might not take affect when it reaches the threshold condition. The DDoS protection allows the device to continue to function while it is under DDoS attack, protecting bot...

5CVSS5.2AI score0.01264EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/10/16 9:15 p.m.17 views

Design/Logic Flaw

On Juniper Networks EX4300 Series, receipt of a stream of specific IPv4 packets can cause Routing Engine RE high CPU load, which could lead to network protocol operation issue and traffic interruption. This specific packets can originate only from within the broadcast domain where the device is...

3.3CVSS6.4AI score0.00519EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder