CVE-2026-21912

A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the method to collect FPC Ethernet firmware statistics of Juniper Networks Junos OS on MX10k Series allows a local, low-privileged attacker executing the 'show system firmware' CLI command to cause an LC480 or LC2101 line card to...

EUVD-2014-6266

Malware in sbrugna...

CVE-2022-22249

An Improper Control of a Resource Through its Lifetime vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on MX Series allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. When there is a continuous mac move a memory corruption causes one or mo...

CVE-2021-0257

On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPCs Modular Port Concentrators where Integrated Routing and Bridging IRB interfaces are configured and mapped to a VPLS instance or a Bridge-Domain, certain Layer 2 network events at Customer Edge CE devices may cause memo...

CVE-2021-0228

An improper check for unusual or exceptional conditions vulnerability in Juniper Networks MX Series platforms with Trio-based MPC Modular Port Concentrator deployed in Ethernet VPN EVPN-Virtual Extensible LAN VXLAN configuration, may allow an attacker sending specific Layer 2 traffic to cause...

CVE-2021-0202

On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPC Modular Port Concentrator where Integrated Routing and Bridging IRB interface is configured and it is mapped to a VPLS instance or a Bridge-Domain, certain network events at Customer Edge CE device may cause memory leak...

CVE-2020-1680

On Juniper Networks MX Series with MS-MIC or MS-MPC card configured with NAT64 configuration, receipt of a malformed IPv6 packet may crash the MS-PIC component on MS-MIC or MS-MPC. This issue occurs when a multiservice card is translating the malformed IPv6 packet to IPv4 packet. An unauthenticat...

Juniper Junos CVE-2019-0065 Denial of Service Vulnerability

Description Juniper Junos is prone to a denial-of-service vulnerability. An attacker may exploit this issue to cause denial-of-service conditions. The following versions of Junos on Juniper MX-Series platform are vulnerable: Juniper Junos 16.1 versions prior to 16.1R7-S5 Juniper Junos 16.2 versio...

Juniper Junos CVE-2019-0074 Local Directory Traversal Vulnerability

Description Juniper Junos is prone to a local directory-traversal vulnerability. An attacker can exploit this issue using directory-traversal characters '../' to read arbitrary files that contain sensitive information or to access files outside of the restricted directory to obtain sensitive...

CVE-2019-0001

Receipt of a malformed packet on MX Series devices with dynamic vlan configuration can trigger an uncontrolled recursion loop in the Broadband Edge subscriber management daemon bbe-smgd, and lead to high CPU usage and a crash of the bbe-smgd service. Repeated receipt of the same packet can result...

Juniper MX Series Appliance Junos OS ALG Denial of Service Vulnerability

Juniper MX Series is an MX Series router from Juniper Networks, Inc.Junos OS is the operating system used in the Juniper MX Series. A security vulnerability exists in the Junos OS in Juniper MX Series devices. A remote attacker could send packet fragments through the Application Layer Gateway ALG...

CVE-2017-2340

On Juniper Networks Junos OS 15.1 releases from 15.1R3 to 15.1R4, 16.1 prior to 16.1R3, on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured, a vulnerability in processing IPv6 ND packets originating from subscribers and destined to M/MX series routers can...

Design/Logic Flaw

The Juniper MX Series routers with Junos 13.3R3 through 13.3Rx before 13.3R6, 14.1 before 14.1R4, 14.1X50 before 14.1X50-D70, and 14.2 before 14.2R2, when configured as a broadband edge BBE router, allows remote attackers to cause a denial of service jpppd crash and restart by sending a crafted P...

CVE-2014-6382

CVE-2014-6382 affects Juniper MX Series routers running Junos 13.3R3–13.3Rx pre-13.3R6, 14.1 pre-14.1R4, 14.1X50 pre-14.1X50-D70, and 14.2 pre-14.2R2 when configured as a broadband edge (BBE) router. The issue is a DoS in the PPP daemon (jpppd) triggered by a crafted PAP Authenticate-Request afte...