174 matches found
CVE-2025-30645
A NULL Pointer Dereference vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack DS Lite tunnel to crash the flowd process, resulting in a Denial of Service DoS. Continuous...
CVE-2025-30645
A NULL Pointer Dereference vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack DS Lite tunnel to crash the flowd process, resulting in a Denial of Service DoS. Continuous...
CVE-2025-30645 Junos OS: SRX Series: Transmission of specific control traffic sent out of a DS-Lite tunnel results in flowd crash
A NULL Pointer Dereference vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack DS Lite tunnel to crash the flowd process, resulting in a Denial of Service DoS. Continuous...
CVE-2025-30645 Junos OS: SRX Series: Transmission of specific control traffic sent out of a DS-Lite tunnel results in flowd crash
A NULL Pointer Dereference vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack DS Lite tunnel to crash the flowd process, resulting in a Denial of Service DoS. Continuous...
Juniper Networks Junos OS SRX 代码问题漏洞
Juniper Networks Junos OS SRX is a Juniper Networks, Inc. network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A code issue vulnerability exists in Juniper Networks Junos OS SRX that stems from the...
The vulnerability of the “demon flowd” in Juniper Networks’ Junos OS, which allows a hacker to trigger a service failure.
The vulnerability of the “demon flowd” in Juniper Networks’ Junos OS is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to trigger service failures remotely...
CVE-2024-47503
An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX4600 and SRX5000 Series allows an unauthenticated and logically adjacent attacker to cause a Denial-of-Service DoS. If in a multicast scenario a sequence of...
CVE-2024-47504
An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine pfe Juniper Networks Junos OS on SRX5000 Series allows an unauthenticated, network based attacker to cause a Denial of Service Dos. When a non-clustered SRX5000 device receives a specifically malformed...
CVE-2024-47504 Junos OS: SRX5000 Series: Receipt of a specific malformed packet will cause a flowd crash
An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine pfe Juniper Networks Junos OS on SRX5000 Series allows an unauthenticated, network based attacker to cause a Denial of Service Dos. When a non-clustered SRX5000 device receives a specifically malformed...
PT-2024-7138
Name of the Vulnerable Software and Affected Versions Junos OS versions 22.1R1 through 22.2R3-S4 Junos OS versions 22.3 through 22.3R3-S3 Junos OS versions 22.4 through 22.4R3-S3 Junos OS versions 23.2 through 23.2R2-S1 Junos OS versions 23.4 through 23.4R2 Junos OS versions 24.2 through 24.2R2...
The vulnerability of the flow processing daemon (flowd) in Juniper Networks’ Junos routers of the SRX4600 and SRX5000 series allows a hacker to circumvent existing security restrictions.
The vulnerability of the flow processing daemon flowd in Juniper Networks’ Junos routers of the SRX4600 and SRX5000 series is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions by...
CVE-2024-39561
An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow daemon flowd of Juniper Networks Junos OS on SRX4600 and SRX5000 Series allows an attacker to send TCP packets with SYN/FIN or SYN/RST flags, bypassing the expected blocking of these packets. A TCP packet with SYN/F...
PT-2024-6324 · Juniper Networks · Junos
Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.2R3-S8 Junos OS versions from 21.4 before 21.4R3-S7 Junos OS versions from 22.1 before 22.1R3-S6 Junos OS versions from 22.2 before 22.2R3-S4 Junos OS versions from 22.3 before 22.3R3-S3 Junos OS versions from 22...
CVE-2024-30392
A Stack-based Buffer Overflow vulnerability in Flow Processing Daemon flowd of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause Denial of Service DoS. On all Junos OS MX Series platforms with SPC3 and MS-MPC/-MIC, when URL filtering is enabled and a specific UR...
PT-2024-3313
Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 21.2R3-S6 Junos OS versions 21.3 prior to 21.3R3-S5 Junos OS versions 21.4 prior to 21.4R3-S5 Junos OS versions 22.1 prior to 22.1R3-S3 Junos OS versions 22.2 prior to 22.2R3-S1 Junos OS versions 22.3 prior to...
The vulnerability of the flow processing daemon (flowd) in Juniper Networks’ Junos routers of the SRX series allows a attacker to cause a service failure.
The vulnerability of the flow processing daemon flowd in Juniper Networks’ Junos routers of the SRX series arises due to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
CVE-2024-21606
A Double Free vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX Series allows a network-based, unauthenticated attacker to cause a Denial of Service DoS. In a remote access VPN scenario, if a "tcp-encap-profile" is configured and a sequence of specific packets ...
CVE-2024-21594
A Heap-based Buffer Overflow vulnerability in the Network Services Daemon NSD of Juniper Networks Junos OS allows authenticated, low privileged, local attacker to cause a Denial of Service DoS. On an SRX 5000 Series device, when executing a specific command repeatedly, memory is corrupted, which...
CVE-2024-21606 Junos OS: SRX Series: When "tcp-encap" is configured and specific packets are received flowd will crash
A Double Free vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX Series allows a network-based, unauthenticated attacker to cause a Denial of Service DoS. In a remote access VPN scenario, if a "tcp-encap-profile" is configured and a sequence of specific packets ...
CVE-2024-21601
CVE-2024-21601 affects Juniper Networks Junos OS on SRX Series. A race condition in the Flow-processing Daemon (flowd) occurs when two threads simultaneously process the queue used for TCP events, causing flowd to crash. This allows an unauthenticated, network-based attacker to trigger a Denial-o...