Lucene search
K

174 matches found

OSV
OSV
added 2019/10/09 8:15 p.m.5 views

CVE-2019-0051

SSL-Proxy feature on SRX devices fails to handle a hardware resource limitation which can be exploited by remote SSL/TLS servers to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition. For this issue to occur, clients protected by the...

7.5CVSS5.8AI score0.01064EPSS
Exploits0References1
OSV
OSV
added 2019/10/09 8:15 p.m.4 views

CVE-2019-0055

A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service DoS to the device by sending specific types of valid SIP traffic to the device. In this case, the flowd process crashes and generates a core dump while processing...

7.5CVSS5.8AI score0.01349EPSS
Exploits0References2
NVD
NVD
added 2019/10/09 8:15 p.m.30 views

CVE-2019-0060

The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel. Continued processing of these packets may result in an extended Denial of Service DoS condition. This issue only occurs...

7.5CVSS7.6AI score0.01348EPSS
Exploits0References2
OSV
OSV
added 2019/10/09 8:15 p.m.5 views

CVE-2019-0060

The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel. Continued processing of these packets may result in an extended Denial of Service DoS condition. This issue only occurs...

7.5CVSS5.8AI score0.01348EPSS
Exploits0References2
Prion
Prion
added 2019/10/09 8:15 p.m.21 views

Design/Logic Flaw

A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service DoS to the device by sending specific types of valid SIP traffic to the device. In this case, the flowd process crashes and generates a core dump while processing...

5CVSS7.4AI score0.01349EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/10/09 7:26 p.m.26 views

CVE-2019-0068 Junos OS: SRX Series: Denial of Service vulnerability in flowd due to multicast packets

The SRX flowd process, responsible for packet forwarding, may crash and restart when processing specific multicast packets. By continuously sending the specific multicast packets, an attacker can repeatedly crash the flowd process causing a sustained Denial of Service. This issue affects Juniper...

6.5CVSS7.7AI score0.01309EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/10/09 7:26 p.m.33 views

CVE-2019-0051 SRX5000 Series: Denial of Service vulnerability in SSL-Proxy feature.

SSL-Proxy feature on SRX devices fails to handle a hardware resource limitation which can be exploited by remote SSL/TLS servers to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition. For this issue to occur, clients protected by the...

6.5CVSS7.5AI score0.01064EPSS
Exploits0References1
CVE
CVE
added 2019/10/09 7:26 p.m.72 views

CVE-2019-0068

CVE-2019-0068 affects Juniper Networks Junos OS on SRX Series, where the SRX flowd process may crash and restart when handling specific multicast packets. A remote, unauthenticated attacker can trigger a sustained Denial of Service by repeatedly sending the crafted multicast traffic, causing the ...

7.5CVSS7AI score0.01309EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/10/09 7:26 p.m.68 views

CVE-2019-0060

The vulnerability CVE-2019-0060 affects Juniper Junos OS on SRX Series where the flowd process may crash and restart while processing specific transit IP packets through an IPSec tunnel, potentially causing a Denial of Service (DoS). Affected versions include Junos OS 15.1X49 prior to 15.1X49-D17...

7.5CVSS7.7AI score0.01348EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/10/09 7:26 p.m.32 views

CVE-2019-0060 Junos OS: SRX Series: flowd process crash due to processing of specific transit IP packets

The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel. Continued processing of these packets may result in an extended Denial of Service DoS condition. This issue only occurs...

7.5CVSS7.8AI score0.01348EPSS
Exploits0References2
OSV
OSV
added 2018/04/11 7:29 p.m.4 views

CVE-2018-0017

A vulnerability in the Network Address Translation - Protocol Translation NAT-PT feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition for the SRX device...

6.5CVSS5.8AI score
Exploits0References3
NVD
NVD
added 2018/04/11 7:29 p.m.18 views

CVE-2018-0017

A vulnerability in the Network Address Translation - Protocol Translation NAT-PT feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition for the SRX device...

7.5CVSS7.5AI score0.0193EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/04/11 7:0 p.m.23 views

CVE-2018-0017 SRX Series: Denial of service vulnerability in flowd daemon on devices configured with NAT-PT

A vulnerability in the Network Address Translation - Protocol Translation NAT-PT feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition for the SRX device...

7.5CVSS6.7AI score0.0193EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2018/01/26 12:0 a.m.33 views

Juniper Junos Flowd TCP/IP Response Packet Handling Remote DoS (JSA10829)

According to its self-reported version number, the remote Junos device is affected by a denial of service vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid106386; scriptversion"1.6"; scriptsetattributeattribute:"pluginmodificationdate", value:"2026/04/22...

8.2CVSS6.9AI score0.01544EPSS
Exploits0References2
OSV
OSV
added 2018/01/10 10:29 p.m.5 views

CVE-2018-0002

On SRX Series and MX Series devices with a Service PIC with any ALG enabled, a crafted TCP/IP response packet processed through the device results in memory corruption leading to a flowd daemon crash. Sustained crafted response packets lead to repeated crashes of the flowd daemon which results in...

5.9CVSS5.8AI score0.01544EPSS
Exploits0References2
NVD
NVD
added 2018/01/10 10:29 p.m.17 views

CVE-2018-0002

On SRX Series and MX Series devices with a Service PIC with any ALG enabled, a crafted TCP/IP response packet processed through the device results in memory corruption leading to a flowd daemon crash. Sustained crafted response packets lead to repeated crashes of the flowd daemon which results in...

8.2CVSS8.3AI score0.01544EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/01/10 10:0 p.m.21 views

CVE-2018-0002 MX series, SRX series: Junos OS: Denial of service vulnerability in Flowd on devices with ALG enabled.

On SRX Series and MX Series devices with a Service PIC with any ALG enabled, a crafted TCP/IP response packet processed through the device results in memory corruption leading to a flowd daemon crash. Sustained crafted response packets lead to repeated crashes of the flowd daemon which results in...

8.2CVSS6.5AI score0.01544EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/10/20 12:0 a.m.69 views

Juniper Junos SRX Flowd Crash Vulnerability (JSA10811)

According to its self-reported version number, the remote Junos device is affected by a vulnerability where one or more ALGs enabled may cause a flowd crash when traffic is processed by the Sun/MS-RPC ALGs. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid104033;...

7.5CVSS7.2AI score0.01034EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/10/20 12:0 a.m.42 views

Juniper Junos SRX Flowd Crash Vulnerability (JSA10813)

According to its self-reported version number, the remote Junos device is affected by a vulnerability in which a crafted ICMP packet embedded within a NAT64 IPv6 to IPv4 tunnel may cause the flowd process to crash. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid10403...

7.5CVSS6.9AI score0.01055EPSS
Exploits0References2
CNVD
CNVD
added 2017/10/19 12:0 a.m.4 views

Junos OS Denial of Service Vulnerability in Multiple Juniper Networks Products

Juniper SRX1400 and others are firewall appliances from Juniper Networks, Inc.Junos OS is the operating system that runs on them. A security vulnerability exists in the high availability cluster configuration mode of Junos OS versions 12.3X48 and 15.1X49 in various Juniper Networks products. An...

7.5CVSS7.4AI score0.01296EPSS
Exploits0References1
Rows per page
Query Builder