Lucene search
+L

182 matches found

ncsc
ncsc
added 4 days ago15 views

Vulnerabilities found in Juniper Networks’ Junos OS and Junos OS Evolved

Juniper has identified several vulnerabilities in Junos OS and Junos OS Evolved, specifically related to devices in the MX Series, PTX Series, QFX Series, EX Series, SRX Series, and QFX10000 Series. These vulnerabilities affect various components of Junos OS and Junos OS Evolved, including the...

9.8CVSS7.1AI score0.02497EPSS
Exploits0References22
euvd
euvd
added 2026/07/10 12:31 a.m.7 views

EUVD-2026-42713

A Return of Pointer Value Outside of Expected Range vulnerability in the fileio library of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privilged attacker to cause a Denial-of-Service DoS. On EX Series, QFX Series and MX Series a low-privileged attacker issuing a specific...

6.8CVSS6AI score0.0014EPSS
Exploits0References2
euvd
euvd
added 2026/07/10 12:31 a.m.8 views

EUVD-2026-42703

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on EX Series allows a local, authenticated attacker to cause a Denial-of-Service DoS. On EX2300, EX4000, EX4100, EX4300-MP Multigigabit and EX4400 switches, an authenticated, local attacker with no specific permissions ...

6.8CVSS6AI score0.00123EPSS
Exploits0References2
nvd
nvd
added 2026/07/09 10:17 p.m.6 views

CVE-2026-57032

An Improper Handling of Undefined Parameters vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on EX Series devices allows an authenticated attacker with low privileges to cause a Denial-of-Service DoS. If an attempt is made to subscribe to an unsupported telemetry...

7.1CVSS0.00421EPSS
Exploits0References1
nvd
nvd
added 2026/07/09 10:17 p.m.19 views

CVE-2026-33802

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on EX Series allows a local, authenticated attacker to cause a Denial-of-Service DoS. On EX2300, EX4000, EX4100, EX4300-MP Multigigabit and EX4400 switches, an authenticated, local attacker with no specific permissions ...

6.8CVSS0.00123EPSS
Exploits0References1
cve
cve
added 2026/07/09 9:14 p.m.21 views

CVE-2026-57032

CVE-2026-57032 describes an improper handling of undefined parameters in the packet forwarding engine (pfe) of Juniper Networks Junos OS on EX Series devices. When attempting to subscribe to an unsupported telemetry sensor path on EX2300, EX3400, EX4000, EX4100, and EX4400 via gRPC, the Front Pan...

7.1CVSS5.9AI score0.00421EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2026/07/09 9:14 p.m.32 views

CVE-2026-57032 Junos OS: EX Series: Subscribing to an unsupported telemetry sensor path causes fxpc process crash

An Improper Handling of Undefined Parameters vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on EX Series devices allows an authenticated attacker with low privileges to cause a Denial-of-Service DoS. If an attempt is made to subscribe to an unsupported telemetry...

7.1CVSS0.00421EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/07/09 9:14 p.m.6 views

CVE-2026-57032

An Improper Handling of Undefined Parameters vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on EX Series devices allows an authenticated attacker with low privileges to cause a Denial-of-Service DoS. If an attempt is made to subscribe to an unsupported telemetry...

7.1CVSS5.9AI score0.00421EPSS
Exploits0References2Affected Software1
cve
cve
added 2026/07/09 9:7 p.m.16 views

CVE-2026-57025

CVE-2026-57025 affects Juniper Junos OS and Junos OS Evolved. The vulnerability is a Return of Pointer Value Outside of Expected Range in the fileio library that enables a local, low-privileged attacker to trigger a Denial-of-Service. On EX Series, QFX Series and MX Series, issuing a specific 'sh...

6.8CVSS6.1AI score0.0014EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2026/07/09 9:7 p.m.7 views

CVE-2026-57025 Junos OS and Junos OS Evolved: EX Series, QFX Series, MX Series: A specific 'show l2-learning/ethernet-switching' command causes l2ald crash

A Return of Pointer Value Outside of Expected Range vulnerability in the fileio library of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privilged attacker to cause a Denial-of-Service DoS. On EX Series, QFX Series and MX Series a low-privileged attacker issuing a specific...

6.8CVSS6.1AI score0.0014EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/07/09 9:7 p.m.7 views

CVE-2026-57025

A Return of Pointer Value Outside of Expected Range vulnerability in the fileio library of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privilged attacker to cause a Denial-of-Service DoS. On EX Series, QFX Series and MX Series a low-privileged attacker issuing a specific...

6.8CVSS6.1AI score0.0014EPSS
Exploits0References2Affected Software2
cvelist
cvelist
added 2026/07/09 9:7 p.m.33 views

CVE-2026-57025 Junos OS and Junos OS Evolved: EX Series, QFX Series, MX Series: A specific 'show l2-learning/ethernet-switching' command causes l2ald crash

A Return of Pointer Value Outside of Expected Range vulnerability in the fileio library of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privilged attacker to cause a Denial-of-Service DoS. On EX Series, QFX Series and MX Series a low-privileged attacker issuing a specific...

6.8CVSS0.0014EPSS
Exploits0References1
cve
cve
added 2026/07/09 9:3 p.m.11 views

CVE-2026-33802

Summary: CVE-2026-33802 is a Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on EX Series switches (EX2300, EX4000, EX4100, EX4300-MP, EX4400) that allows a locally authenticated attacker with no specific permissions to execute a privileged CLI command and trigger a Do...

6.8CVSS6AI score0.00123EPSS
Exploits0References1Affected Software1
attackerkb
attackerkb
added 2026/07/09 9:3 p.m.7 views

CVE-2026-33802

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on EX Series allows a local, authenticated attacker to cause a Denial-of-Service DoS. On EX2300, EX4000, EX4100, EX4300-MP Multigigabit and EX4400 switches, an authenticated, local attacker with no specific permissions ...

6.8CVSS6AI score0.00123EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/07/09 9:3 p.m.33 views

CVE-2026-33802 Junos OS: EX Series: Unauthorized users can execute service-impacting CLI command

A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on EX Series allows a local, authenticated attacker to cause a Denial-of-Service DoS. On EX2300, EX4000, EX4100, EX4300-MP Multigigabit and EX4400 switches, an authenticated, local attacker with no specific permissions ...

6.8CVSS0.00123EPSS
Exploits0References1
nessus
nessus
added 2026/07/08 12:0 a.m.6 views

Juniper Junos OS Vulnerability (JSA110077)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA110077 advisory. - A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on EX Series allows a local, authenticated attacker to cause a Denial-of-Service DoS...

6.8CVSS6AI score0.00123EPSS
Exploits0References2
nessus
nessus
added 2026/07/08 12:0 a.m.8 views

Juniper Junos OS Vulnerability (JSA110092)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA110092 advisory. - An Improper Handling of Undefined Parameters vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on EX Series devices allows an authenticated...

7.1CVSS6.1AI score0.00421EPSS
Exploits0References2
nuclei
nuclei
added 2026/06/16 7:13 a.m.118 views

Juniper J-Web - Remote Code Execution

A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-based attacker to control certain environments variables to execute remote commands id: CVE-2023-36845 info: name: Juniper J-Web - Remote Code...

9.8CVSS7.9AI score0.93546EPSS
Exploits27References5
nessus
nessus
added 2026/04/28 12:0 a.m.14 views

Juniper Junos OS Vulnerability (JSA75729)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA75729 advisory. - An Out-of-bounds Write vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated, network-based attacker to cause a Denial ...

9.8CVSS9.3AI score0.17668EPSS
Exploits1References2
redhatcve
redhatcve
added 2026/04/13 7:23 p.m.10 views

CVE-2026-33773

An Incorrect Initialization of Resource vulnerability in the packet forwarding engine pfe of Juniper Networks Junos OS on specific EX Series and QFX Series device allows an unauthenticated, network-based attacker to cause an integrity impact to downstream networks. When the same family inet or...

6.9CVSS5.8AI score0.00201EPSS
Exploits0References1
Rows per page
Query Builder