Juniper Networks Junos OS Input Validation Error Vulnerability (CNVD-2019-41476)

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. An input validation error vulnerability exists in Juniper Networks Junos OS MX Series. The vulnerability originates from a...

Juniper Networks Junos OS Input Validation Error Vulnerability (CNVD-2019-41475)

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. An input validation error vulnerability exists in Juniper Networks Junos OS MX Series. The vulnerability originates from a...

The vulnerability of the SIP ALG application-level gateway on Junos OS MX Series routers allows a attacker to cause a service failure.

The vulnerability of the SIP ALG application-level gateway on Junos OS MX Series routers stems from resource release errors. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted SIP packets...

The vulnerability of the jdhcpd daemon in Junos OS MX Series routers allows a attacker to cause a service failure.

The vulnerability of the jdhcpd daemon in Junos OS MX Series routers is related to resource release errors. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted DHCP packets...

CVE-2019-0074

A path traversal vulnerability in NFX150 Series and QFX10K Series, EX9200 Series, MX Series and PTX Series devices with Next-Generation Routing Engine NG-RE allows a local authenticated user to read sensitive system files. This issue only affects NFX150 Series and QFX10K Series, EX9200 Series, MX...

CVE-2019-0074

A path traversal vulnerability in NFX150 Series and QFX10K Series, EX9200 Series, MX Series and PTX Series devices with Next-Generation Routing Engine NG-RE allows a local authenticated user to read sensitive system files. This issue only affects NFX150 Series and QFX10K Series, EX9200 Series, MX...

CVE-2019-0065

On MX Series, when the SIP ALG is enabled, receipt of a certain malformed SIP packet may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending a crafted SIP packet, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a sustained Denial of Service. This issue...

CVE-2019-0063

When an MX Series Broadband Remote Access Server BRAS is configured as a Broadband Network Gateway BNG with DHCPv6 enabled, jdhcpd might crash when receiving a specific crafted DHCP response message on a subscriber interface. The daemon automatically restarts without intervention, but continuous...

CVE-2019-0063

When an MX Series Broadband Remote Access Server BRAS is configured as a Broadband Network Gateway BNG with DHCPv6 enabled, jdhcpd might crash when receiving a specific crafted DHCP response message on a subscriber interface. The daemon automatically restarts without intervention, but continuous...

CVE-2019-0065

On MX Series, when the SIP ALG is enabled, receipt of a certain malformed SIP packet may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending a crafted SIP packet, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a sustained Denial of Service. This issue...

Denial of service

On MX Series, when the SIP ALG is enabled, receipt of a certain malformed SIP packet may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending a crafted SIP packet, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a sustained Denial of Service. This issue...

Design/Logic Flaw

When an MX Series Broadband Remote Access Server BRAS is configured as a Broadband Network Gateway BNG with DHCPv6 enabled, jdhcpd might crash when receiving a specific crafted DHCP response message on a subscriber interface. The daemon automatically restarts without intervention, but continuous...

Path traversal

A path traversal vulnerability in NFX150 Series and QFX10K Series, EX9200 Series, MX Series and PTX Series devices with Next-Generation Routing Engine NG-RE allows a local authenticated user to read sensitive system files. This issue only affects NFX150 Series and QFX10K Series, EX9200 Series, MX...

CVE-2019-0074

The CVE-2019-0074 issue is a path traversal vulnerability in Juniper Junos OS affecting NFX150, QFX10K, EX9200, MX, and PTX series with NG-RE (vmhost). A local authenticated attacker can read sensitive system files via traversal in NG-RE paths. Affected are multiple firmware tracks: 15.1F before ...

CVE-2019-0063

CVE-2019-0063 concerns Juniper Networks Junos OS on MX Series BRAS configured as BNG with DHCPv6 enabled, where a specifically crafted DHCP response on a subscriber interface can crash the jdhcpd daemon. The crash triggers an automatic restart, but repeated crafted messages may cause an extended ...

CVE-2019-0065

Junos OS on MX Series is affected by CVE-2019-0065 due to a malformed SIP packet that, when the SIP ALG is enabled, can crash the MS-PIC component on MS-MIC or MS-MPC and cause a sustained DoS. Affected releases include MX Series across multiple track versions prior to fixed builds: 16.1R7-S5, 16...

CVE-2019-0065 Junos OS: MX Series: Denial of Service vulnerability in MS-PIC component on MS-MIC or MS-MPC

On MX Series, when the SIP ALG is enabled, receipt of a certain malformed SIP packet may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending a crafted SIP packet, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a sustained Denial of Service. This issue...

Juniper Junos CVE-2019-0065 Denial of Service Vulnerability

Description Juniper Junos is prone to a denial-of-service vulnerability. An attacker may exploit this issue to cause denial-of-service conditions. The following versions of Junos on Juniper MX-Series platform are vulnerable: Juniper Junos 16.1 versions prior to 16.1R7-S5 Juniper Junos 16.2 versio...

Juniper Junos CVE-2019-0074 Local Directory Traversal Vulnerability

Description Juniper Junos is prone to a local directory-traversal vulnerability. An attacker can exploit this issue using directory-traversal characters '../' to read arbitrary files that contain sensitive information or to access files outside of the restricted directory to obtain sensitive...

CVE-2018-20916

cPanel before 70.0.23 allows Stored XSS via a WHM Edit MX Entry SEC-370...