115 matches found
Vulnerabilities found in Juniper Networks’ Junos OS and Junos OS Evolved
Juniper has identified several vulnerabilities in Junos OS and Junos OS Evolved, specifically related to devices in the MX Series, PTX Series, QFX Series, EX Series, SRX Series, and QFX10000 Series. These vulnerabilities affect various components of Junos OS and Junos OS Evolved, including the...
CVE-2026-57024
A Use of Multiple Resources with Duplicate Identifier vulnerability in the IKE daemon iked of Juniper Networks Junos OS on MX with SPC3 and SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. On an MX with SPC3 and SRX devices configured for VPN service,...
CVE-2026-57024 Junos OS: MX with SPC3, SRX Series: Repeated VPN negotiation failures will eventually cause iked to crash continuously
A Use of Multiple Resources with Duplicate Identifier vulnerability in the IKE daemon iked of Juniper Networks Junos OS on MX with SPC3 and SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. On an MX with SPC3 and SRX devices configured for VPN service,...
Juniper Junos OS Vulnerability (JSA107868)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA107868 advisory. - An Improper Validation of Syntactic Correctness of Input vulnerability in the IPsec library used by kmd and iked of Juniper Networks Junos OS on SRX Series and MX Series...
CVE-2025-14733
WatchGuard Fireware OS is affected by CVE-2025-14733 (Out-of-bounds Write in the iked process) that enables remote unauthenticated code execution when Mobile User VPN (IKEv2) or Branch Office VPN (IKEv2) is configured with a dynamic gateway peer. Affected versions include Fireware OS 11.10.2–11.1...
EUVD-2015-4075
Malware in sbrugna...
EUVD-2019-3949
Malware in sbrugna...
EUVD-2004-0155
Malware in sbrugna...
EUVD-2009-2654
Malware in sbrugna...
EUVD-2011-4025
Malware in sbrugna...
EUVD-2010-2632
Malware in sbrugna...
EUVD-2014-2914
Malware in sbrugna...
EUVD-2024-38071
Malicious code in bioql PyPI...
EUVD-2024-19257
Malicious code in bioql PyPI...
CVE-2024-39545
An Improper Check for Unusual or Exceptional Conditions vulnerability in the the IKE daemon iked of Juniper Networks Junos OS on SRX Series, MX Series with SPC3 and NFX350 allows allows an unauthenticated, network-based attacker sending specific mismatching parameters as part of the IPsec...
CVE-2024-39545
The CVE describes an Improper Check for Unusual or Exceptional Conditions in Juniper Networks Junos OS iked (on SRX Series, MX Series with SPC3, and NFX350), where unauthenticated network-based attackers can trigger an iked crash during IPsec negotiations by sending specific mismatching parameter...
Juniper Junos OS Vulnerability (JSA83007)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA83007 advisory. - An Improper Check for Unusual or Exceptional Conditions vulnerability in the the IKE daemon iked of Juniper Networks Junos OS on SRX Series, MX Series with SPC3 and NFX350...
CVE-2024-21609 Junos OS: MX Series with SPC3, and SRX Series: If specific IPsec parameters are negotiated iked will crash due to a memory leak
A Missing Release of Memory after Effective Lifetime vulnerability in the IKE daemon iked of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an administratively adjacent attacker which is able to successfully establish IPsec tunnels to cause a Denial of Service DoS. If...
CVE-2024-21609 Junos OS: MX Series with SPC3, and SRX Series: If specific IPsec parameters are negotiated iked will crash due to a memory leak
A Missing Release of Memory after Effective Lifetime vulnerability in the IKE daemon iked of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an administratively adjacent attacker which is able to successfully establish IPsec tunnels to cause a Denial of Service DoS. If...
CVE-2024-21609
CVE-2024-21609 affects Juniper Networks Junos OS on MX Series with SPC3, and SRX Series. The vulnerability is a missing release of memory after the IPsec SA rekey in the iked process, triggered by crafted IPsec parameter values (local-ip, remote-ip, remote ike-id, traffic selectors), leading to m...