EUVD-2026-21093

A Missing Authentication for Critical Function vulnerability in the Flexible PIC Concentrators FPCs of Juniper Networks Junos OS Evolved on PTX Series allows a local, authenticated attacker with low privileges to gain direct access to FPCs installed in the device. A local user with low privileges...

CVE-2026-33788 Junos OS Evolved: Local, authenticated attacker can gain privileged access to FPCs

A Missing Authentication for Critical Function vulnerability in the Flexible PIC Concentrators FPCs of Juniper Networks Junos OS Evolved on PTX Series allows a local, authenticated attacker with low privileges to gain direct access to FPCs installed in the device. A local user with low privileges...

CVE-2026-33788

A Missing Authentication for Critical Function vulnerability in the Flexible PIC Concentrators FPCs of Juniper Networks Junos OS Evolved on PTX Series allows a local, authenticated attacker with low privileges to gain direct access to FPCs installed in the device. A local user with low privileges...

PT-2026-31753

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS Evolved on PTX Series versions prior to 21.2R3-S8-EVO, versions 21.4-EVO prior to 21.4R3-S7-EVO, versions 22.2-EVO prior to 22.2R3-S4-EVO, versions 22.3-EVO prior to 22.3R3-S3-EVO, versions 22.4-EVO prior to...

EUVD-2006-0490

Malware in sbrugna...

EUVD-2006-3900

Malware in sbrugna...

EUVD-2021-2889

Malicious code in bioql PyPI...

Palo Alto Networks PAN-OS Management Interface OS Command Injection Vulnerability

Palo Alto Networks PAN-OS contains an OS command injection vulnerability that allows for privilege escalation through the web-based management interface for several PAN products, including firewalls and VPN concentrators...

Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability

Palo Alto Networks PAN-OS contains an authentication bypass vulnerability in the web-based management interface for several PAN-OS products, including firewalls and VPN concentrators...

CVE-2021-0288

CVE-2021-0288 affects Juniper Junos OS on MX Series and EX9200 Series with Trio-based MPCs. The vulnerability stems from how specific MPLS packets are processed, potentially causing the FPC to crash and triggering a DoS if packets continue to arrive. Affected versions are listed in the core CVE d...

Race condition

On PTX Series and QFX10k Series devices with the "inline-jflow" feature enabled, a use after free weakness in the Packet Forwarding Engine PFE microkernel architecture of Juniper Networks Junos OS may allow an attacker to cause a Denial of Service DoS condition whereby one or more Flexible PIC...

CVE-2021-0272 Junos OS: QFX10002-32Q, QFX10002-60C, QFX10002-72Q, QFX10008, QFX10016: In EVPN-VXLAN scenarios receipt of specific genuine packets by an adjacent attacker will cause a kernel memory leak in FPC.

A kernel memory leak in QFX10002-32Q, QFX10002-60C, QFX10002-72Q, QFX10008, QFX10016 devices Flexible PIC Concentrators FPCs on Juniper Networks Junos OS allows an attacker to send genuine packets destined to the device to cause a Denial of Service DoS to the device. On QFX10002-32Q, QFX10002-60C...

CVE-2010-4354

The remote-access IPSec VPN implementation on Cisco Adaptive Security Appliances ASA 5500 series devices, PIX Security Appliances 500 series devices, and VPN Concentrators 3000 series devices responds to an Aggressive Mode IKE Phase I message only when the group name is configured on the device,...

CVE-2010-4354

The CVE covers a vulnerability in Cisco VPN products where remote attackers could enumerate valid VPN group names by sending an IKE Aggressive Mode packet with the group name in the ID field. Affected devices include ASA 5500 series, PIX 500 series, and VPN Concentrators 3000 series. Root cause i...

CVE-2010-4354

The remote-access IPSec VPN implementation on Cisco Adaptive Security Appliances ASA 5500 series devices, PIX Security Appliances 500 series devices, and VPN Concentrators 3000 series devices responds to an Aggressive Mode IKE Phase I message only when the group name is configured on the device,...

CVE-2006-3906

Internet Key Exchange IKE version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote attackers to cause a denial of service resource exhaustion via a flood of IKE Phase-1 packets that exceed the session expiration rate. NOTE: it has been argued that...

CVE-2006-3906

CVE-2006-3906 describes a DoS in the IKEv1 implementation on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls. The root cause is improper handling of large volumes of IKE Phase-1 requests, leading to resource exhaustion and degraded availability. Exploitation is possible without valid credent...

CVE-2006-3906

Internet Key Exchange IKE version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote attackers to cause a denial of service resource exhaustion via a flood of IKE Phase-1 packets that exceed the session expiration rate. NOTE: it has been argued that...

RE: [Full-disclosure] Cisco VPN Concentrator IKE resource exhaustionDoS Advisory

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello: This is a Cisco PSIRT response to an advisory published by an unaffiliated third party, Roy Hills, of NTA Monitor Ltd posted as of July 26, 2006 at http://www.nta-monitor.com/posts/2006/07/cisco-concentrator-dos.html, and entitled: Cisco VPN...

CVE-2006-3073

Multiple cross-site scripting XSS vulnerabilities in the WebVPN feature in the Cisco VPN 3000 Series Concentrators and Cisco ASA 5500 Series Adaptive Security Appliances ASA, when in WebVPN clientless mode, allow remote attackers to inject arbitrary web script or HTML via the domain parameter in ...