Lucene search
K

174 matches found

OSV
OSV
added 2025/04/09 8:15 p.m.5 views

CVE-2025-30645

A NULL Pointer Dereference vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack DS Lite tunnel to crash the flowd process, resulting in a Denial of Service DoS. Continuous...

8.7CVSS5.8AI score0.00372EPSS
Exploits0References1
NVD
NVD
added 2025/04/09 8:15 p.m.58 views

CVE-2025-30645

A NULL Pointer Dereference vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack DS Lite tunnel to crash the flowd process, resulting in a Denial of Service DoS. Continuous...

8.7CVSS0.00372EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/09 7:52 p.m.34 views

CVE-2025-30645 Junos OS: SRX Series: Transmission of specific control traffic sent out of a DS-Lite tunnel results in flowd crash

A NULL Pointer Dereference vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack DS Lite tunnel to crash the flowd process, resulting in a Denial of Service DoS. Continuous...

8.7CVSS0.00372EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/09 7:52 p.m.9 views

CVE-2025-30645 Junos OS: SRX Series: Transmission of specific control traffic sent out of a DS-Lite tunnel results in flowd crash

A NULL Pointer Dereference vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack DS Lite tunnel to crash the flowd process, resulting in a Denial of Service DoS. Continuous...

8.7CVSS6.8AI score0.00372EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/09 12:0 a.m.5 views

Juniper Networks Junos OS SRX 代码问题漏洞

Juniper Networks Junos OS SRX is a Juniper Networks, Inc. network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A code issue vulnerability exists in Juniper Networks Junos OS SRX that stems from the...

8.7CVSS6.7AI score0.00372EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.5 views

The vulnerability of the “demon flowd” in Juniper Networks’ Junos OS, which allows a hacker to trigger a service failure.

The vulnerability of the “demon flowd” in Juniper Networks’ Junos OS is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to trigger service failures remotely...

6.5CVSS5.4AI score0.00321EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2024/10/11 4:15 p.m.4 views

CVE-2024-47503

An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX4600 and SRX5000 Series allows an unauthenticated and logically adjacent attacker to cause a Denial-of-Service DoS. If in a multicast scenario a sequence of...

7.1CVSS5.7AI score0.00321EPSS
Exploits0References1
OSV
OSV
added 2024/10/11 4:15 p.m.7 views

CVE-2024-47504

An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine pfe Juniper Networks Junos OS on SRX5000 Series allows an unauthenticated, network based attacker to cause a Denial of Service Dos. When a non-clustered SRX5000 device receives a specifically malformed...

8.7CVSS5.8AI score0.00594EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/11 3:33 p.m.23 views

CVE-2024-47504 Junos OS: SRX5000 Series: Receipt of a specific malformed packet will cause a flowd crash

An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine pfe Juniper Networks Junos OS on SRX5000 Series allows an unauthenticated, network based attacker to cause a Denial of Service Dos. When a non-clustered SRX5000 device receives a specifically malformed...

8.7CVSS0.00594EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/25 12:0 a.m.10 views

PT-2024-7138

Name of the Vulnerable Software and Affected Versions Junos OS versions 22.1R1 through 22.2R3-S4 Junos OS versions 22.3 through 22.3R3-S3 Junos OS versions 22.4 through 22.4R3-S3 Junos OS versions 23.2 through 23.2R2-S1 Junos OS versions 23.4 through 23.4R2 Junos OS versions 24.2 through 24.2R2...

8.7CVSS5.9AI score0.00594EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2024/09/20 12:0 a.m.5 views

The vulnerability of the flow processing daemon (flowd) in Juniper Networks’ Junos routers of the SRX4600 and SRX5000 series allows a hacker to circumvent existing security restrictions.

The vulnerability of the flow processing daemon flowd in Juniper Networks’ Junos routers of the SRX4600 and SRX5000 series is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions by...

5.8CVSS5.5AI score0.00313EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/07/10 11:15 p.m.3 views

CVE-2024-39561

An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX4600 and SRX5000 Series allows an attacker to send TCP packets with SYN/FIN or SYN/RST flags, bypassing the expected blocking of these packets. A TCP packet with SYN/F...

6.9CVSS5.8AI score0.00313EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/25 12:0 a.m.6 views

PT-2024-6324 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.2R3-S8 Junos OS versions from 21.4 before 21.4R3-S7 Junos OS versions from 22.1 before 22.1R3-S6 Junos OS versions from 22.2 before 22.2R3-S4 Junos OS versions from 22.3 before 22.3R3-S3 Junos OS versions from 22...

6.9CVSS7.2AI score0.00313EPSS
Exploits0References9
OSV
OSV
added 2024/04/12 4:15 p.m.4 views

CVE-2024-30392

A Stack-based Buffer Overflow vulnerability in Flow Processing Daemon flowd of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause Denial of Service DoS. On all Junos OS MX Series platforms with SPC3 and MS-MPC/-MIC, when URL filtering is enabled and a specific UR...

8.7CVSS5.8AI score0.00694EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/10 12:0 a.m.10 views

PT-2024-3313

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 21.2R3-S6 Junos OS versions 21.3 prior to 21.3R3-S5 Junos OS versions 21.4 prior to 21.4R3-S5 Junos OS versions 22.1 prior to 22.1R3-S3 Junos OS versions 22.2 prior to 22.2R3-S1 Junos OS versions 22.3 prior to...

8.7CVSS5.4AI score0.00694EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/01/18 12:0 a.m.6 views

The vulnerability of the flow processing daemon (flowd) in Juniper Networks’ Junos routers of the SRX series allows a attacker to cause a service failure.

The vulnerability of the flow processing daemon flowd in Juniper Networks’ Junos routers of the SRX series arises due to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

5.9CVSS6.2AI score0.00454EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/01/12 1:15 a.m.4 views

CVE-2024-21606

A Double Free vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX Series allows a network-based, unauthenticated attacker to cause a Denial of Service DoS. In a remote access VPN scenario, if a "tcp-encap-profile" is configured and a sequence of specific packets ...

7.5CVSS5.8AI score0.00555EPSS
Exploits0References2
OSV
OSV
added 2024/01/12 1:15 a.m.4 views

CVE-2024-21594

A Heap-based Buffer Overflow vulnerability in the Network Services Daemon NSD of Juniper Networks Junos OS allows authenticated, low privileged, local attacker to cause a Denial of Service DoS. On an SRX 5000 Series device, when executing a specific command repeatedly, memory is corrupted, which...

5.5CVSS5.7AI score0.00173EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/01/12 12:54 a.m.25 views

CVE-2024-21606 Junos OS: SRX Series: When "tcp-encap" is configured and specific packets are received flowd will crash

A Double Free vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX Series allows a network-based, unauthenticated attacker to cause a Denial of Service DoS. In a remote access VPN scenario, if a "tcp-encap-profile" is configured and a sequence of specific packets ...

7.5CVSS7.7AI score0.00555EPSS
Exploits0References2
CVE
CVE
added 2024/01/12 12:53 a.m.49 views

CVE-2024-21601

CVE-2024-21601 affects Juniper Networks Junos OS on SRX Series. A race condition in the Flow-processing Daemon (flowd) occurs when two threads simultaneously process the queue used for TCP events, causing flowd to crash. This allows an unauthenticated, network-based attacker to trigger a Denial-o...

5.9CVSS5.8AI score0.00454EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder