Lucene search
K

7 matches found

Packet Storm
Packet Storm
added 2026/01/26 12:0 a.m.141 views

📄 Juniper JunOS 23.4 Module Scanner / Exploitation Framework

This PHP script is a modular scanner and exploitation framework targeting Juniper JunOS CVE‑2023‑36846, an arbitrary file upload vulnerability due to missing authentication.. It is designed with a clear separation of responsibilities and supports single‑target testing, interactive exploitation, a...

5.3CVSS5.9AI score0.94205EPSS
Exploits4
GithubExploit
GithubExploit
added 2024/02/13 2:59 p.m.209 views

Exploit for PHP External Variable Modification in Juniper Junos

CVE-2023-36845-6 CVE-2023-36845 and CVE-2023-36846 Juniper Jun...

9.8CVSS7.8AI score0.94205EPSS
Exploits26
GithubExploit
GithubExploit
added 2023/08/25 7:28 a.m.220 views

Exploit for PHP External Variable Modification in Juniper Junos

CVE-2023-36844 , CVE-2023-36845 , CVE-2023-36846 , CVE-2023-36...

9.8CVSS8.7AI score0.94205EPSS
Exploits28
Tenable Nessus
Tenable Nessus
added 2023/08/25 12:0 a.m.213 views

Juniper Junos OS Pre-Auth RCE (JSA72300)

The version of Junos OS installed on the remote host is affected by multiple vulnerabilities as referenced in the JSA72300 advisory. - A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX and SRX Series allows an unauthenticated, network-based attacker to...

9.8CVSS7.8AI score0.94205EPSS
Exploits28References9
The Hacker News
The Hacker News
added 2023/08/19 7:38 a.m.77 views

New Juniper Junos OS Flaws Expose Devices to Remote Attacks - Patch Now

Networking hardware company Juniper Networks has released an "out-of-cycle" security update to address multiple flaws in the J-Web component of Junos OS that could be combined to achieve remote code execution on susceptible installations. The four vulnerabilities have a cumulative CVSS rating of...

9.8CVSS7.7AI score0.94205EPSS
Exploits28
Circl
Circl
added 2023/08/18 12:38 a.m.10 views

CVE-2023-36846

creationtimestamp| type| source ---|---|--- 2023-08-18 00:38:01+00:00| seen| https://t.me/cibsecurity/68807 2023-08-20 06:53:11+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus14/2023 2023-08-27 15:11:36+00:00| published-proof-of-concept|...

5.3CVSS6.7AI score0.94205EPSS
Exploits4References21
CVE
CVE
added 2023/08/17 7:18 p.m.349 views

CVE-2023-36846

CVE-2023-36846 (Juniper Junos OS SRX Series) is a Missing Authentication for Critical Function vulnerability. An unauthenticated, network-based attacker can trigger J-Web to upload arbitrary files, leading to a loss of file-system integrity for a portion of the device. Affected Junos OS/SRX Serie...

5.3CVSS6.2AI score0.94205EPSS
In wildExploits4References2Affected Software1
Rows per page
Query Builder