Lucene search
K

7 matches found

GithubExploit
GithubExploit
added 2023/08/25 7:28 a.m.221 views

Exploit for PHP External Variable Modification in Juniper Junos

CVE-2023-36844 , CVE-2023-36845 , CVE-2023-36846 , CVE-2023-36...

9.8CVSS8.7AI score0.94205EPSS
Exploits28
Tenable Nessus
Tenable Nessus
added 2023/08/25 12:0 a.m.213 views

Juniper Junos OS Pre-Auth RCE (JSA72300)

The version of Junos OS installed on the remote host is affected by multiple vulnerabilities as referenced in the JSA72300 advisory. - A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX and SRX Series allows an unauthenticated, network-based attacker to...

9.8CVSS7.8AI score0.94205EPSS
Exploits28References9
The Hacker News
The Hacker News
added 2023/08/19 7:38 a.m.77 views

New Juniper Junos OS Flaws Expose Devices to Remote Attacks - Patch Now

Networking hardware company Juniper Networks has released an "out-of-cycle" security update to address multiple flaws in the J-Web component of Junos OS that could be combined to achieve remote code execution on susceptible installations. The four vulnerabilities have a cumulative CVSS rating of...

9.8CVSS7.7AI score0.94205EPSS
Exploits28
Circl
Circl
added 2023/08/18 12:37 a.m.21 views

CVE-2023-36847

creationtimestamp| type| source ---|---|--- 2023-08-18 00:37:46+00:00| seen| https://t.me/cibsecurity/68795 2023-08-20 06:53:11+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus14/2023 2023-08-27 15:11:36+00:00| published-proof-of-concept|...

5.3CVSS6.3AI score0.84692EPSS
Exploits2References14
NVD
NVD
added 2023/08/17 8:15 p.m.23 views

CVE-2023-36847

A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to installAppPackage.php that doesn't require authentication an...

5.3CVSS6.2AI score0.84692EPSS
Exploits2References2
CVE
CVE
added 2023/08/17 7:16 p.m.329 views

CVE-2023-36847

CVE-2023-36847 affects Juniper Networks Junos OS on EX Series. It is a pre-authentication missing-authentication-for-critical-function vulnerability in J-Web that allows an unauthenticated, network-based attacker to upload arbitrary files, causing limited integrity loss in parts of the file syste...

5.3CVSS6.2AI score0.84692EPSS
In wildExploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/17 7:16 p.m.10 views

CVE-2023-36847 Junos OS: EX Series: A vulnerability in J-Web allows an unauthenticated attacker to upload arbitrary files

A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to installAppPackage.php that doesn't require authentication an...

5.3CVSS6.2AI score0.84692EPSS
Exploits2References1
Rows per page
Query Builder