CVE-2020-1638

The FPC Flexible PIC Concentrator of Juniper Networks Junos OS and Junos OS Evolved may restart after processing a specific IPv4 packet. Only packets destined to the device itself, successfully reaching the RE through existing edge and control plane filtering, will be able to cause the FPC restar...

CVE-2020-1619

A privilege escalation vulnerability in Juniper Networks QFX10K Series, EX9200 Series, MX Series, and PTX Series with Next-Generation Routing Engine NG-RE, allows a local authenticated high privileged user to access the underlying WRL host. This issue only affects QFX10K Series with NG-RE, EX9200...

CVE-2020-1619 Junos OS: QFX10K Series, EX9200 Series, MX Series, PTX Series: Privilege escalation vulnerability in NG-RE.

A privilege escalation vulnerability in Juniper Networks QFX10K Series, EX9200 Series, MX Series, and PTX Series with Next-Generation Routing Engine NG-RE, allows a local authenticated high privileged user to access the underlying WRL host. This issue only affects QFX10K Series with NG-RE, EX9200...

CVE-2020-1619

CVE-2020-1619 describes a local privilege-escalation in Juniper Junos OS NG-RE on QFX10K, EX9200, MX and PTX Series with vmhost. Affected software includes Junos OS releases up to the listed versions prior to 16.1R7-S6, 16.2R2-S11, 17.1R2-S11/17.1R3, 17.2R1-S9/17.2R3-S3, 17.3R2-S5/17.3R3-S7, 17.4...

The vulnerability of the Broadband Edge service in the Junos OS router MX Series allows a attacker to cause a service failure.

The vulnerability of the Broadband Edge service on Junos OS routers of the MX Series exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

antiX and MX Linux Input Validation Error Vulnerability

antiX Linux is a lightweight desktop Linux system distribution. antiX Linux is a Linux system distribution. An input validation error vulnerability exists in antiX and MX Linux that originates in the configuration of Sudo and can be exploited by a local attacker to gain root privileges...

CVE-2020-10587

antiX and MX Linux allow local users to achieve root access via "persist-config --command /bin/sh" because of the Sudo configuration...

Design/Logic Flaw

antiX and MX Linux allow local users to achieve root access via "persist-config --command /bin/sh" because of the Sudo configuration...

CVE-2020-10587

antiX and MX Linux allow local users to achieve root access via "persist-config --command /bin/sh" because of the Sudo configuration...

CVE-2020-10587

CVE-2020-10587 affects antiX and MX Linux. A local attacker can obtain root access through the Sudo configuration by abusing the persist-config --command /bin/sh vector. The root cause is a misconfigured Sudo setup that allows execution of a shell with elevated privileges from a local context. Pu...

Junos OS: Broadband Edge Service Denial of Service (DoS) Vulnerability (JSA10987)

According to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability due to an unspecified issue in the processing of packets destined to Broadband Edge BBE clients connected to MX Series subscriber management platforms. Receipt of a...

CVE-2020-1608

Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge BBE service may trigger a kernel crash vmcore, causing the device to reboot. The issue is specific to the processing of packets destined to BBE clients connected to MX Serie...

Code injection

Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge BBE service may trigger a kernel crash vmcore, causing the device to reboot. The issue is specific to the processing of packets destined to BBE clients connected to MX Serie...

CVE-2020-1608

CVE-2020-1608 affects Juniper Networks Junos OS on MX Series in BBE configurations. Receipt of a specific MPLS or IPv6 packet on the core-facing interface may trigger a kernel crash (vmcore) and reboot, tied to processing for BBE clients. Affected Junos versions span multiple tracks: 17.2R2-S6 on...

CVE-2020-1608 Junos OS: MX Series: In BBE configurations, receipt of a specific MPLS or IPv6 packet causes a Denial of Service

Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge BBE service may trigger a kernel crash vmcore, causing the device to reboot. The issue is specific to the processing of packets destined to BBE clients connected to MX Serie...

Stack overflow when resolving additional records from MX or SRV null targets

There's a stack overflow leading to a crash and potential DOS when processing additional records for return of MX or SRV record types from the server. This is only possible when a zone is configured with a null target for MX or SRV records, i.e. '.'. Example effected zone record: text no-service...

RUSTSEC-2020-0001 Stack overflow when resolving additional records from MX or SRV null targets

There's a stack overflow leading to a crash and potential DOS when processing additional records for return of MX or SRV record types from the server. This is only possible when a zone is configured with a null target for MX or SRV records, i.e. '.'. Example effected zone record: text no-service...

PT-2020-17489 · Trust Dns · Trust-Dns-Server

Name of the Vulnerable Software and Affected Versions: trust-dns-server versions prior to 0.18.1 Description: An issue was discovered in the trust-dns-server crate, where DNS MX and SRV null targets are mishandled, causing stack consumption. This can lead to a stack overflow, resulting in a crash...

The vulnerability of Junos OS routers from the NFX150, EX9200 series, with NG-RE, MX with NG-RE, PTX with NG-RE, and QFX10K with NG-RE families, arises due to incorrect restrictions on path names to restricted access directories. This allows attackers to gain unauthorized access to protected information.

The vulnerability of Junos OS router models in the NFX150, EX9200 with NG-RE, MX with NG-RE, PTX with NG-RE, and QFX10K with NG-RE series is related to incorrect restrictions on path names to restricted directories. Exploiting this vulnerability can allow an attacker to gain unauthorized access t...

New Linux Bug Lets Attackers Hijack Encrypted VPN Connections

A team of cybersecurity researchers has disclosed a new severe vulnerability affecting most Linux and Unix-like operating systems, including FreeBSD, OpenBSD, macOS, iOS, and Android, that could allow remote 'network adjacent attackers' to spy on and tamper with encrypted VPN connections. The...