Lucene search
K

70 matches found

CNNVD
CNNVD
added 2023/01/13 12:0 a.m.5 views

Juniper Networks Junos OS 安全漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a security vulnerability that stems from an incorrect locking vulnerability in...

7.5CVSS7.4AI score0.00467EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/01/03 12:0 a.m.6 views

The vulnerability of the SIP Application Layer Gateway (ALG) on Juniper Networks’ Junos operating systems allows a attacker to trigger a system failure and restart the device.

The vulnerability of the SIP Application Layer Gateway ALG on Juniper Networks Junos operating systems is related to the use of an uninitialized pointer in the stack. Exploiting this vulnerability can allow a malicious actor to trigger a system failure and restart the device remotely...

7.8CVSS7.1AI score0.00616EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2022/10/18 3:15 a.m.11 views

CVE-2022-22236

An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway ALG of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When specific valid SIP packets are received the PFE will crash and...

7.5CVSS0.00616EPSS
Exploits0References1
CVE
CVE
added 2022/10/18 2:46 a.m.57 views

CVE-2022-22236

The CVE-2022-22236 affects Juniper Junos OS on SRX/MX series, caused by an uninitialized pointer in the SIP Application Layer Gateway (ALG) that can crash the PFE and trigger DoS when specific SIP packets arrive. Affected versions include 20.4R3-S4 and earlier for 20.4, 21.1R3-S2 and earlier, 21....

7.5CVSS7.5AI score0.00616EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/10/12 12:0 a.m.35 views

Juniper Junos OS Vulnerability (JSA69892)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA69892 advisory. - An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway ALG of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated,...

7.5CVSS7.4AI score0.00616EPSS
Exploits0References2
Cisco
Cisco
added 2022/09/28 4:0 p.m.36 views

Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability

A vulnerability in the DNS application layer gateway ALG functionality that is used by Network Address Translation NAT in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability is due to a logic error that occurs when an...

8.6CVSS8.4AI score0.00866EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/08/18 12:0 a.m.6 views

The vulnerability of the “SIP ALG” module (SIP Application Layer Gateway) in the Realtek SDK for the eCos operating system allows a hacker to execute arbitrary code.

The vulnerability of the “SIP ALG” module SIP Application Layer Gateway in the Realtek SDK for the eCos operating system is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted UDP packet...

10CVSS8.6AI score0.3708EPSS
Exploits2References4Affected Software2
NVD
NVD
added 2022/07/20 3:15 p.m.26 views

CVE-2022-22204

An Improper Release of Memory Before Removing Last Reference vulnerability in the Session Initiation Protocol SIP Application Layer Gateway ALG of Juniper Networks Junos OS allows unauthenticated network-based attacker to cause a partial Denial of Service DoS. On all MX and SRX platforms, if the...

5.3CVSS0.00615EPSS
Exploits1References1
Prion
Prion
added 2022/05/05 5:15 p.m.17 views

Design/Logic Flaw

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5, and 14.1.x versions prior to 14.1.4.6, when a Session Initiation Protocol SIP message routing framework MRF application layer gateway ALG profile is configured on a Message Routing virtual server, undisclosed request...

5CVSS7.5AI score0.00764EPSS
Exploits0References1Affected Software11
CNNVD
CNNVD
added 2022/01/12 12:0 a.m.5 views

Juniper Networks Junos OS 安全漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS that originates from improper locking of the SI...

7.5CVSS7.4AI score0.00688EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/11/25 12:0 a.m.6 views

The vulnerability of the Session Initiation Protocol (SIP) implementation and the Network Address Translation (NAT) function of the Application Layer Gateway (ALG) in microprogrammable network interface devices from Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to circumvent security restrictions and establish unauthorized connections.

The vulnerability of the Session Initiation Protocol SIP implementation and the Network Address Translation NAT function of the Application Layer Gateway ALG in microprogrammable network devices such as Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to...

5CVSS5.9AI score0.011EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/11/12 12:0 a.m.11 views

The vulnerability of the File Transfer Protocol (FTP) implementation and the NAT functions of the Application Layer Gateway (ALG) in microprogrammable network devices such as Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to circumvent security restrictions and establish unauthorized connections.

The vulnerability of the File Transfer Protocol FTP implementation and the Network Address Translation NAT function of the Application Layer Gateway ALG in microprogrammable network devices such as Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to...

5CVSS5.9AI score0.011EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2021/10/27 7:15 p.m.5 views

CVE-2021-34790

Multiple vulnerabilities in the Application Level Gateway ALG for the Network Address Translation NAT feature of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass the ALG and open unauthorized...

5.3CVSS5.8AI score0.011EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/10/27 12:0 a.m.8 views

PT-2021-4718 · Cisco · Cisco Ftd +1

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: The issue is related to the incorrect implementation of security checks fo...

5.3CVSS5.6AI score0.011EPSS
Exploits0References9
CNVD
CNVD
added 2021/03/25 12:0 a.m.11 views

Cisco IOS XE Denial of Service Vulnerability (CNVD-2021-22190)

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial of service vulnerability exists in the DNS Application Layer Gateway ALG feature used by Network Address Translation NAT in Cisco IOS XE. The vulnerability stems from a...

8.6CVSS6.5AI score0.01494EPSS
Exploits0References1
Cisco
Cisco
added 2021/03/24 4:0 p.m.62 views

Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability

A vulnerability in the DNS application layer gateway ALG functionality used by Network Address Translation NAT in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to a logic error that occurs when an affected...

8.6CVSS7.9AI score0.01494EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/03/24 12:0 a.m.6 views

Cisco IOS XE Software 代码问题漏洞

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial of service vulnerability exists in the DNS Application Layer Gateway ALG feature used by Network Address Translation NAT in Cisco IOS XE. The vulnerability stems from a...

8.6CVSS7.3AI score0.01494EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2020/11/02 12:8 p.m.5 views

New NAT/Firewall Bypass Attack Lets Hackers Access Any TCP/UDP Service

A new research has demonstrated a technique that allows an attacker to bypass firewall protection and remotely access any TCP/UDP service on a victim machine. Called NAT Slipstreaming, the method involves sending the target a link to a malicious site or a legitimate site loaded with malicious ads...

6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/10/10 12:0 a.m.26 views

Cisco IOS XE Software NAT Session Initiation Protocol Application Layer Gateway DoS (cisco-sa-20190925-sip-alg)

According to its self-reported version, Cisco IOS XE Software is affected by a denial of service DoS vulnerability in the Network Address Translation NAT Session Initiation Protocl SIP Application Layer Gateway ALG. This allows an unauthenticated, remote attacker to cause an affected device to...

8.6CVSS7.8AI score0.01967EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2019/10/03 12:0 a.m.6 views

The vulnerability of the Application Layer Gateway (ALG) and the ZBFW network interface of the Cisco IOS XE operating system, which allows a attacker to trigger a reboot of the vulnerable device

The vulnerability of the Application Layer Gateway ALG and the ZBFW network firewall of the Cisco IOS XE operating system exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger a reboot of the vulnerable device...

8.6CVSS5.5AI score0.01973EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder