1476 matches found
CVE-2024-39535 Junos OS Evolved: ACX 7000 Series: When specific traffic is received in a VPLS scenario evo-pfemand crashes
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service DoS. When a device has a Layer 3 or an IRB interface configur...
CVE-2024-39535
CVE-2024-39535 affects Juniper Networks Junos OS Evolved on ACX 7000 Series. The vulnerability is an improper check in the PFE that allows an unauthenticated, adjacent attacker to trigger a DoS by sending specific traffic when a Layer 3 or IRB interface is in a VPLS instance. Affected releases: J...
CVE-2024-39532 Junos OS and Junos OS Evolved: Confidential information in logs can be accessed by another user
An Insertion of Sensitive Information into Log File vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with high privileges to access sensitive information. When another user performs a specific operation, sensitive information is stored as plai...
CVE-2024-39532 Junos OS and Junos OS Evolved: Confidential information in logs can be accessed by another user
An Insertion of Sensitive Information into Log File vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with high privileges to access sensitive information. When another user performs a specific operation, sensitive information is stored as plai...
CVE-2024-39531 Junos OS Evolved: ACX 7000 Series: Protocol specific DDoS configuration affects other protocols
An Improper Handling of Values vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX 7000 Series allows a network-based, unauthenticated attacker to cause a Denial-of-Service DoS. If a value is configured for DDoS bandwidth or burst parameters for any...
CVE-2024-39528 Junos OS and Junos OS Evolved: Concurrent deletion of a routing-instance and receipt of an SNMP request cause an RPD crash
A Use After Free vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated, network-based attacker to cause a Denial of Service DoS.On all Junos OS and Junos Evolved platforms, if a routing-instance deactivation is triggered, and at...
CVE-2024-39528
CVE-2024-39528 — AUse After Free in Juniper Junos OS/Junos OS Evolved Routing Protocol Daemon (rpd) causes a segmentation fault on a specific sequence (routing-instance deactivation + SNMP request), leading to rpd crash and DoS. Affected: Junos OS and Junos OS Evolved. Reported vulnerable version...
CVE-2024-39524 Junos OS Evolved: CLI parameter processing issue allows privilege escalation
An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of the system. The Junos OS Evolved CLI doesn't properly handle...
CVE-2024-39524
The CVE concerns Juniper Networks Junos OS Evolved CLI: an Improper Neutralization of Special Elements in CLI command option handling allows a local, authenticated user with LOW privileges to escalate to root, potentially compromising the entire system. Affected versions are: all before 20.4R3-S7...
CVE-2024-39524 Junos OS Evolved: CLI parameter processing issue allows privilege escalation
An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of the system. The Junos OS Evolved CLI doesn't properly handle...
CVE-2024-39523 Junos OS Evolved: CLI parameter processing issue allows privilege escalation
An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of the system. The Junos OS Evolved CLI doesn't properly handle...
CVE-2024-39523 Junos OS Evolved: CLI parameter processing issue allows privilege escalation
An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of the system. The Junos OS Evolved CLI doesn't properly handle...
CVE-2024-39522
CVE-2024-39522 in Juniper Networks Junos OS Evolved is a local, privilege-escalation flaw caused by an improper neutralization of special elements in CLI options. It affects Junos OS Evolved: 22.3‑EVO before 22.3R2‑EVO and 22.4‑EVO before 22.4R1‑S1‑EVO, 22.4R2‑EVO. The underlying root cause is th...
CVE-2024-39521
The issue CVE-2024-39521 affects Juniper Networks Junos OS Evolved: the CLI mishandles command options under crafted parameter sets, enabling a local, authenticated user with low privileges to escalate to root on the shell and fully compromise the system. Affected versions include 21.1-EVOR1-EVO ...
CVE-2024-39521 Junos OS Evolved: CLI parameter processing issue allows privilege escalation
An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of the system. The Junos OS Evolved CLI doesn't properly handle...
CVE-2024-39521 Junos OS Evolved: CLI parameter processing issue allows privilege escalation
An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of the system. The Junos OS Evolved CLI doesn't properly handle...
CVE-2024-39520 Junos OS Evolved: CLI parameter processing issue allows privilege escalation
An Improper Neutralization of Special Elements vulnerability in Juniper Networks Junos OS Evolved commands allows a local, authenticated attacker with low privileges to escalate their privileges to 'root' leading to a full compromise of the system. The Junos OS Evolved CLI doesn't properly handle...
CVE-2024-39520
CVE-2024-39520: An Improper Neutralization of Special Elements vulnerability in Junos OS Evolved CLI parameter handling allows a locally authenticated, low-privilege attacker to escalate to root. Affected versions include all before 20.4R3-S6-EVO; 21.2-EVO before 21.2R3-S4-EVO; 21.4-EVO before 21...
CVE-2024-39519
CVE-2024-39519 describes an improper check in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on the ACX7000 Series. An unauthenticated, adjacent attacker can cause a DoS by triggering a multicast traffic loop when a CE is dual-homed to two PEs in an EVPN MPLS setup, via I...
CVE-2024-39519 Junos OS Evolved: ACX 7000 Series: Multicast traffic is looped in a multihoming EVPN MPLS scenario
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service DoS. On all ACX 7000 Series platforms running Junos OS Evolved...