174 matches found
CVE-2019-0051
SSL-Proxy feature on SRX devices fails to handle a hardware resource limitation which can be exploited by remote SSL/TLS servers to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition. For this issue to occur, clients protected by the...
CVE-2019-0055
A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service DoS to the device by sending specific types of valid SIP traffic to the device. In this case, the flowd process crashes and generates a core dump while processing...
CVE-2019-0060
The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel. Continued processing of these packets may result in an extended Denial of Service DoS condition. This issue only occurs...
CVE-2019-0060
The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel. Continued processing of these packets may result in an extended Denial of Service DoS condition. This issue only occurs...
Design/Logic Flaw
A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service DoS to the device by sending specific types of valid SIP traffic to the device. In this case, the flowd process crashes and generates a core dump while processing...
CVE-2019-0068 Junos OS: SRX Series: Denial of Service vulnerability in flowd due to multicast packets
The SRX flowd process, responsible for packet forwarding, may crash and restart when processing specific multicast packets. By continuously sending the specific multicast packets, an attacker can repeatedly crash the flowd process causing a sustained Denial of Service. This issue affects Juniper...
CVE-2019-0051 SRX5000 Series: Denial of Service vulnerability in SSL-Proxy feature.
SSL-Proxy feature on SRX devices fails to handle a hardware resource limitation which can be exploited by remote SSL/TLS servers to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition. For this issue to occur, clients protected by the...
CVE-2019-0068
CVE-2019-0068 affects Juniper Networks Junos OS on SRX Series, where the SRX flowd process may crash and restart when handling specific multicast packets. A remote, unauthenticated attacker can trigger a sustained Denial of Service by repeatedly sending the crafted multicast traffic, causing the ...
CVE-2019-0060
The vulnerability CVE-2019-0060 affects Juniper Junos OS on SRX Series where the flowd process may crash and restart while processing specific transit IP packets through an IPSec tunnel, potentially causing a Denial of Service (DoS). Affected versions include Junos OS 15.1X49 prior to 15.1X49-D17...
CVE-2019-0060 Junos OS: SRX Series: flowd process crash due to processing of specific transit IP packets
The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel. Continued processing of these packets may result in an extended Denial of Service DoS condition. This issue only occurs...
CVE-2018-0017
A vulnerability in the Network Address Translation - Protocol Translation NAT-PT feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition for the SRX device...
CVE-2018-0017
A vulnerability in the Network Address Translation - Protocol Translation NAT-PT feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition for the SRX device...
CVE-2018-0017 SRX Series: Denial of service vulnerability in flowd daemon on devices configured with NAT-PT
A vulnerability in the Network Address Translation - Protocol Translation NAT-PT feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition for the SRX device...
Juniper Junos Flowd TCP/IP Response Packet Handling Remote DoS (JSA10829)
According to its self-reported version number, the remote Junos device is affected by a denial of service vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid106386; scriptversion"1.6"; scriptsetattributeattribute:"pluginmodificationdate", value:"2026/04/22...
CVE-2018-0002
On SRX Series and MX Series devices with a Service PIC with any ALG enabled, a crafted TCP/IP response packet processed through the device results in memory corruption leading to a flowd daemon crash. Sustained crafted response packets lead to repeated crashes of the flowd daemon which results in...
CVE-2018-0002
On SRX Series and MX Series devices with a Service PIC with any ALG enabled, a crafted TCP/IP response packet processed through the device results in memory corruption leading to a flowd daemon crash. Sustained crafted response packets lead to repeated crashes of the flowd daemon which results in...
CVE-2018-0002 MX series, SRX series: Junos OS: Denial of service vulnerability in Flowd on devices with ALG enabled.
On SRX Series and MX Series devices with a Service PIC with any ALG enabled, a crafted TCP/IP response packet processed through the device results in memory corruption leading to a flowd daemon crash. Sustained crafted response packets lead to repeated crashes of the flowd daemon which results in...
Juniper Junos SRX Flowd Crash Vulnerability (JSA10811)
According to its self-reported version number, the remote Junos device is affected by a vulnerability where one or more ALGs enabled may cause a flowd crash when traffic is processed by the Sun/MS-RPC ALGs. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid104033;...
Juniper Junos SRX Flowd Crash Vulnerability (JSA10813)
According to its self-reported version number, the remote Junos device is affected by a vulnerability in which a crafted ICMP packet embedded within a NAT64 IPv6 to IPv4 tunnel may cause the flowd process to crash. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid10403...
Junos OS Denial of Service Vulnerability in Multiple Juniper Networks Products
Juniper SRX1400 and others are firewall appliances from Juniper Networks, Inc.Junos OS is the operating system that runs on them. A security vulnerability exists in the high availability cluster configuration mode of Junos OS versions 12.3X48 and 15.1X49 in various Juniper Networks products. An...