4 matches found
Juniper Junos Information Exposure Vulnerability (JSA11008)
The version of Junos OS installed on the remote host is prior to 14.1X53-D53, 15.1R7-S6, 15.1X49-D200, 16.1R7-S7, 17.1R2-S11, 17.2R3-S3, 17.3R2-S5, 17.4R2-S9, 18.1R3-S8, 18.2R3-S2, 18.3R2-S3, 18.4R1-S5, 19.1R1-S4, 19.2R1-S4, or 19.3R1-S1. It is, therefore, affected by an information exposure...
CVE-2020-1628
Juniper Networks Junos OS uses the 128.0.0.0/2 subnet for internal communications between the RE and PFEs. It was discovered that packets utilizing these IP addresses may egress an EX4300 switch, leaking configuration information such as heartbeats, kernel versions, etc. out to the Internet,...
CVE-2020-1628 Junos OS: EX4300: Traffic from the network internal to the device (128.0.0.0) may be forwarded to egress interfaces
Juniper Networks Junos OS uses the 128.0.0.0/2 subnet for internal communications between the RE and PFEs. It was discovered that packets utilizing these IP addresses may egress an EX4300 switch, leaking configuration information such as heartbeats, kernel versions, etc. out to the Internet,...
CVE-2020-1628
Juniper Junos OS on EX4300 is affected by an information exposure vulnerability (CVE-2020-1628) due to use of the 128.0.0.0/2 internal subnet for RE–PFE communications, which may cause packets to leak configuration details (e.g., heartbeats, kernel versions) to the Internet. Affected are multiple...