1134 matches found
CVE-2022-22210
A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on QFX5000 Series and MX Series allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. On QFX5K Series and MX Series, when the PFE receives a specific VxLAN packet the...
Input validation
An Improper Release of Memory Before Removing Last Reference vulnerability in the Session Initiation Protocol SIP Application Layer Gateway ALG of Juniper Networks Junos OS allows unauthenticated network-based attacker to cause a partial Denial of Service DoS. On all MX and SRX platforms, if the...
Design/Logic Flaw
A Use After Free vulnerability in the Advanced Forwarding Toolkit AFT manager process aftmand of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause a kernel crash due to intensive polling of Abstracted Fabric AF interface statistics and thereby a Denial of Service DoS...
CVE-2022-22210 Junos OS: QFX5000 Series and MX Series: An l2alm crash leading to an FPC crash can be observed in VxLAN scenario
A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on QFX5000 Series and MX Series allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. On QFX5K Series and MX Series, when the PFE receives a specific VxLAN packet the...
CVE-2022-22207 Junos OS: MX Series with MPC11: In a GNF / node slicing scenario gathering AF interface statistics can lead to a kernel crash
A Use After Free vulnerability in the Advanced Forwarding Toolkit AFT manager process aftmand of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause a kernel crash due to intensive polling of Abstracted Fabric AF interface statistics and thereby a Denial of Service DoS...
CVE-2022-22204 Junos OS: MX Series and SRX Series: When receiving a specific SIP packets stale call table entries are created which eventually leads to a DoS for all SIP traffic
An Improper Release of Memory Before Removing Last Reference vulnerability in the Session Initiation Protocol SIP Application Layer Gateway ALG of Juniper Networks Junos OS allows unauthenticated network-based attacker to cause a partial Denial of Service DoS. On all MX and SRX platforms, if the...
CVE-2022-22210
A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on QFX5000 Series and MX Series allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. On QFX5K Series and MX Series, when the PFE receives a specific VxLAN packet the...
CVE-2022-22204
An Improper Release of Memory Before Removing Last Reference vulnerability in the Session Initiation Protocol SIP Application Layer Gateway ALG of Juniper Networks Junos OS allows unauthenticated network-based attacker to cause a partial Denial of Service DoS. On all MX and SRX platforms, if the...
CVE-2022-22207
A Use After Free vulnerability in the Advanced Forwarding Toolkit AFT manager process aftmand of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause a kernel crash due to intensive polling of Abstracted Fabric AF interface statistics and thereby a Denial of Service DoS...
beat75.mx Cross Site Scripting vulnerability OBB-2541034
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2022-22198
An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service DoS. Continued receipt of these specific packets will cause a sustained Denial of Service condition. On all MX and SRX...
CVE-2022-22198
An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service DoS. Continued receipt of these specific packets will cause a sustained Denial of Service condition. On all MX and SRX...
Format string
An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service DoS. Continued receipt of these specific packets will cause a sustained Denial of Service condition. On all MX and SRX...
CVE-2022-22198
The CVE-2022-22198 vulnerability affects Juniper Networks Junos OS on MX Series and SRX Series when SIP ALG is enabled. The root cause is an Access of Uninitialized Pointer in the SIP ALG, which can be exploited by unauthenticated network-based attackers to cause a Denial of Service. Per the docu...
CVE-2022-22198
An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service DoS. Continued receipt of these specific packets will cause a sustained Denial of Service condition. On all MX and SRX...
mx.dual-sim.cards Improper Access Control vulnerability OBB-2384878
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Vulnerabilities fixed in Juniper JunOS
Juniper has fixed two vulnerabilities in JunOS for the MX and SRX series systems. An unauthenticated remote malicious person could exploit the vulnerabilities to cause a denial-of-service on the systems that have SIP Application Layer Gateway SIP ALG active. This gateway is active when the system...
The vulnerability of the smgd subscriber management demon on Juniper Networks’ Junos OS-based MX router devices allows a attacker to cause a service failure.
The vulnerability of the smgd subscriber management daemon for Juniper Networks’ Junos OS routers in the MX series operating systems is related to improper handling of exceptions. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
The vulnerability of flow processing demons in Juniper Networks’ Junos OS-based SRX and MX-SPC3 routers allows a attacker to cause service interruptions.
The vulnerability of flow processing on Juniper Networks’ Junos OS-based SRX and MX-SPC3 routers is related to algorithmic complexity and unlimited resource allocation during packet processing. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
CVE-2022-22178
A Stack-based Buffer Overflow vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on MX Series and SRX series allows an unauthenticated networked attacker to cause a flowd crash and thereby a Denial of Service DoS. Continued receipt of these specific packets will cause ...