CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2024/01/12 12:54 a.m.•46 views

CVE-2024-21604

CVE-2024-21604 describes an Allocation of Resources Without Limits or Throttling vulnerability in Juniper Networks Junos OS Evolved kernels. A high rate of specific valid packets processed by the routing engine (RE) can cause loss of connectivity between the RE and other chassis components, leadi...

7.5CVSS7.4AI score0.00285EPSS

Vulnrichment•added 2024/01/12 12:54 a.m.•5 views

CVE-2024-21604 Junos OS Evolved: A high rate of specific traffic will cause a complete system outage

An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. If a high rate of specific valid packets are processed by the routing engine RE this will le...

7.5CVSS7.4AI score0.00285EPSS

Cvelist•added 2024/01/12 12:54 a.m.•19 views

CVE-2024-21604 Junos OS Evolved: A high rate of specific traffic will cause a complete system outage

7.5CVSS7.6AI score0.00285EPSS

CVE•added 2024/01/12 12:54 a.m.•49 views

CVE-2024-21602

CVE-2024-21602 describes a NULL Pointer Dereference in Juniper Networks Junos OS Evolved on ACX7024, ACX7100-32C and ACX7100-48L. An unauthenticated, network-based attacker can trigger a DoS by sending a specific IPv4 UDP packet to the Routing Engine, causing the RE’s packetio to crash/restart an...

7.5CVSS7.5AI score0.00187EPSS

Vulnrichment•added 2024/01/12 12:54 a.m.•2 views

CVE-2024-21602 Junos OS Evolved: ACX7024, ACX7100-32C and ACX7100-48L: Traffic stops when a specific IPv4 UDP packet is received by the RE

A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS Evolved on ACX7024, ACX7100-32C and ACX7100-48L allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. If a specific IPv4 UDP packet is received and sent to the Routing Engine RE packetio crashes an...

7.5CVSS7.1AI score0.00187EPSS

Cvelist•added 2024/01/12 12:52 a.m.•14 views

CVE-2024-21596 Junos OS and Junos OS Evolved: A specific BGP UPDATE message will cause a crash in the backup Routing Engine in NSR-enabled devices

A Heap-based Buffer Overflow vulnerability in the Routing Protocol Daemon RPD of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network based attacker to cause a Denial of Service DoS. If an attacker sends a specific BGP UPDATE message to the device, this will cause a...

5.3CVSS5.7AI score0.00075EPSS

CVE•added 2024/01/12 12:52 a.m.•56 views

CVE-2024-21596

CVE-2024-21596 describes a heap-based buffer overflow in the Routing Protocol Daemon (RPD) of Junos OS and Junos OS Evolved. An unauthenticated, network-based attacker capable of establishing a BGP session can craft specific BGP UPDATE messages to trigger a memory overwrite, causing an RPD crash ...

5.3CVSS5.4AI score0.00075EPSS

CVE•added 2024/01/12 12:50 a.m.•52 views

CVE-2024-21585

CVE-2024-21585 affects Juniper Networks Junos OS and Junos OS Evolved. An Improper Handling of Exceptional Conditions in BGP session processing on NSR-enabled devices can allow an unauthenticated network-based attacker to cause BGP session flaps, triggering replication of GR/LLGR state and leadin...

5.9CVSS5.8AI score0.0015EPSS

Exploits0References3Affected Software1

NCSC•added 2024/01/12 12:0 a.m.•3 views

Vulnerabilities fixed in Juniper Junos OS and Junos OS Evolved

Vulnerabilities have been fixed in Juniper Junos OS and Junos OS Evolved. The vulnerabilities allow a malicious party to execute attacks that result in the following categories of damage: Denial-of-Service DoS Circumvention of security measure Remote code execution Administrator/Root rights...

9.8CVSS7.8AI score0.16695EPSS

Exploits1

7.5CVSS6.7AI score0.00242EPSS

Juniper Networks Junos OS and Junos OS Evolved Security Vulnerabilities

Juniper Networks Junos OS and Juniper Networks Junos OS Evolved are both products of Juniper Networks, Inc.Juniper Networks Junos OS is a network operating system designed for use with the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK...

5.3CVSS7.3AI score0.00075EPSS

Juniper Networks Junos OS and Junos OS Evolved Buffer Error Vulnerability

CNNVD•added 2024/01/11 12:0 a.m.•4 views

Juniper Networks Junos OS and Junos OS Evolved Code Issue Vulnerability

7.5CVSS6.8AI score0.00187EPSS

CNNVD•added 2024/01/11 12:0 a.m.•1 views

Cisco Evolved Programmable Network Manager Security Vulnerability

Cisco Evolved Programmable Network Manager is a network management solution from Cisco. A security vulnerability exists in Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure, which stems from the existence of multiple vulnerabilities that could allow an attacker to...

6.7CVSS7.3AI score0.00021EPSS

CNNVD•added 2024/01/11 12:0 a.m.•1 views

Juniper Networks Junos OS and Junos OS Evolved Security Vulnerabilities

6.5CVSS6.8AI score0.00043EPSS

7.5CVSS6.8AI score0.00502EPSS

Juniper Networks Junos OS and Junos OS Evolved Code Issue Vulnerability

7.5CVSS6.8AI score0.00187EPSS

Juniper Networks Junos OS and Junos OS Evolved Security Vulnerabilities

CNNVD•added 2024/01/11 12:0 a.m.•1 views

Cisco Prime Infrastructure Security Vulnerability

Cisco Prime Infrastructure is a software application from Cisco USA. It is used to simplify the management of wireless and wired networks. A security vulnerability exists in Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure, which stems from the presence of multiple...

4.8CVSS7.3AI score0.0006EPSS