1134 matches found
CVE-2024-39526
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with EX9200-15C lines cards, MX304 devices, and Juniper Networks Junos OS Evolved on PTX Series, allows an attacker sending...
CVE-2024-47497
CVE-2024-47497 affects Juniper Junos OS on SRX, QFX, MX and EX Series. The vulnerability is an Uncontrolled Resource Consumption in the httpd process when handling certain HTTPS requests, causing unauthenticated, network-based DoS via resource exhaustion and device restart. Affected versions incl...
CVE-2024-47497 Junos OS: SRX Series, QFX Series, MX Series and EX Series: Receiving specific HTTPS traffic causes resource exhaustion
An Uncontrolled Resource Consumption vulnerability in the http daemon httpd of Juniper Networks Junos OS on SRX Series, QFX Series, MX Series and EX Series allows an unauthenticated, network-based attacker to cause Denial-of-Service DoS. An attacker can send specific HTTPS connection requests to...
CVE-2024-47497 Junos OS: SRX Series, QFX Series, MX Series and EX Series: Receiving specific HTTPS traffic causes resource exhaustion
An Uncontrolled Resource Consumption vulnerability in the http daemon httpd of Juniper Networks Junos OS on SRX Series, QFX Series, MX Series and EX Series allows an unauthenticated, network-based attacker to cause Denial-of-Service DoS. An attacker can send specific HTTPS connection requests to...
CVE-2024-47496 Junos OS: MX Series: The PFE will crash on running specific command
A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS allows a local, low-privileged attacker to cause a Denial-of-Service DoS. When a specific command is executed, the pfe crashes. This will cause traffic forwarding to be interrupted until the...
CVE-2024-47496
CVE-2024-47496 affects Juniper Networks Junos OS on MX Series devices with MPC1–MPC9 line cards. A NULL pointer dereference in the Packet Forwarding Engine (pfe) can crash pfe when a specific command is run, causing traffic forwarding interruption and a sustained DoS until self-recovery. Affected...
CVE-2024-47493
CVE-2024-47493 affects Junos OS on MX Series with Trio-based FPCs. The vulnerability is a Missing Release of Memory after Effective Lifetime in the PFE, causing a heap memory leak during channelized MIC interface flap activity and potentially leading to DoS for unauthenticated adjacent attackers....
CVE-2024-47493 Junos OS: MX Series: Trio-based FPCs: Continuous physical Interface flaps causes local FPC to crash
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine PFE of the Juniper Networks Junos OS on the MX Series platforms with Trio-based FPCs allows an unauthenticated, adjacent attacker to cause a Denial of Service DoS. In case of channelized Modular...
CVE-2024-39526 Junos OS and Junos OS Evolved: MX Series with MPC10/MPC11/LC9600, MX304, EX9200, PTX Series: Receipt of malformed DHCP packets causes interfaces to stop processing packets
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with EX9200-15C lines cards, MX304 devices, and Juniper Networks Junos OS Evolved on PTX Series, allows an attacker sending...
CVE-2024-39526 Junos OS and Junos OS Evolved: MX Series with MPC10/MPC11/LC9600, MX304, EX9200, PTX Series: Receipt of malformed DHCP packets causes interfaces to stop processing packets
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with EX9200-15C lines cards, MX304 devices, and Juniper Networks Junos OS Evolved on PTX Series, allows an attacker sending...
The vulnerability of the MX-ONE Provisioning Manager tool, a corporate communication platform from Mitel MiVoice, allows a perpetrator to bypass authentication procedures and compromise the integrity of the protected information.
The vulnerability of the MX-ONE Provisioning Manager PM tool, a component of the corporate communication platform Mitel MiVoice MX-ONE, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to bypass authentication procedures and compromise the...
Juniper Junos OS Vulnerability (JSA88124)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA88124 advisory. - An Uncontrolled Resource Consumption vulnerability in the http daemon httpd of Juniper Networks Junos OS on SRX Series, QFX Series, MX Series and EX Series allows an...
Juniper Junos OS Vulnerability (JSA88119)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA88119 advisory. - A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine PFE of the Juniper Networks Junos OS on the MX Series platforms with...
CVE-2024-20499
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. These vulnerabilities are due to insufficie...
CVE-2024-20509
A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service DoS condition for individual users of the AnyConnect VPN...
CVE-2024-20509
A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to hijack an AnyConnect VPN session or cause a denial of service DoS condition for individual users of the AnyConnect VPN...
CVE-2024-20509
CVE-2024-20509 affects Cisco Meraki MX and Z Series Teleworker Gateway devices running Cisco AnyConnect VPN server. The issue arises from weak entropy in VPN authentication handlers and a race condition in the same process, enabling an unauthenticated, remote attacker to hijack an AnyConnect VPN ...
CVE-2024-20499
CVE-2024-20499 describes multiple DoS vulnerabilities in the Cisco AnyConnect VPN server used by Cisco Meraki MX and Z Series Teleworker Gateway devices. The flaws arise from insufficient validation of client-supplied parameters during SSL VPN session establishment, or from inadequate resource ma...
CVE-2024-20500
The CVE-2024-20500 issue affects Cisco Meraki MX and Z Series Teleworker Gateway devices, specifically the Cisco AnyConnect VPN server. Root cause: insufficient resource management when establishing TLS/SSL sessions, enabling an unauthenticated, remote attacker to induce a DoS by sending crafted ...
CVE-2024-20498 Cisco Meraki MX and Z3 Teleworker Gateway AnyConnect VPN Denial of Service Vulnerability
Multiple vulnerabilities in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a DoS condition in the AnyConnect service on an affected device. These vulnerabilities are due to insufficie...