Lucene search
K

203 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-54301

Malicious code in bioql PyPI...

8.4CVSS6.6AI score0.00408EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-48557

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00354EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-27384

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00396EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/13 3:20 p.m.19 views

CVE-2025-52981

An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow processing daemon flowd of Juniper Networks Junos OS on SRX1600, SRX2300, SRX 4000 Series, and SRX5000 Series with SPC3 allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. If a sequen...

8.7CVSS7.2AI score0.00445EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/13 3:20 p.m.14 views

CVE-2025-6549

An Incorrect Authorization vulnerability in the web server of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to reach the Juniper Web Device Manager J-Web. When Juniper Secure connect JSC is enabled on specific interfaces, or multiple interfaces are...

6.9CVSS7.2AI score0.00208EPSS
Exploits0References1
NVD
NVD
added 2025/07/11 4:15 p.m.6 views

CVE-2025-6549

An Incorrect Authorization vulnerability in the web server of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to reach the Juniper Web Device Manager J-Web. When Juniper Secure connect JSC is enabled on specific interfaces, or multiple interfaces are...

6.9CVSS0.00208EPSS
Exploits0References1
NVD
NVD
added 2025/07/11 4:15 p.m.5 views

CVE-2025-52985

A Use of Incorrect Operator vulnerability in the Routing Engine firewall of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to bypass security restrictions. When a firewall filter which is applied to the lo0 or re:mgmt interface references a prefix list with...

6.9CVSS0.00238EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/11 3:11 p.m.4 views

CVE-2025-6549 Junos OS: SRX Series: J-Web can be exposed on additional interfaces

An Incorrect Authorization vulnerability in the web server of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to reach the Juniper Web Device Manager J-Web. When Juniper Secure connect JSC is enabled on specific interfaces, or multiple interfaces are...

6.9CVSS7.2AI score0.00208EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/11 3:9 p.m.4 views

CVE-2025-52983 Junos OS: After removing ssh public key authentication root can still log in

A UI Discrepancy for Security Feature vulnerability in the UI of Juniper Networks Junos OS on VM Host systems allows a network-based, unauthenticated attacker to access the device. On VM Host Routing Engines RE, even if the configured public key for root has been removed, remote users which are i...

8.6CVSS6.6AI score0.00604EPSS
Exploits0References2
CVE
CVE
added 2025/07/11 3:8 p.m.24 views

CVE-2025-52982

Juniper Junos OS MX Series with MS-MPC SIP ALG is affected. When two or more SIP-processing service sets run, an improper resource shutdown can cause the MS-MPC to crash and restart, enabling unauthenticated network-based DoS. Affected versions: all before 21.2R3-S9; 21.4 from 21.4R1; 22.2 before...

8.2CVSS6.7AI score0.00378EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/09 12:0 a.m.4 views

PT-2025-29255

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS Evolved versions prior to 23.2R2-S4-EVO Juniper Networks Junos OS Evolved versions prior to 23.4R2-S5-EVO Juniper Networks Junos OS Evolved versions prior to 24.2R2-S1-EVO Juniper Networks Junos OS Evolved versions...

6.9CVSS5.4AI score0.00238EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/15 6:9 p.m.10 views

CVE-2025-4660

A remote code execution vulnerability exists in the Windows agent component of SecureConnector due to improper access controls on a named pipe. The pipe is accessible to the Everyone group and does not restrict remote connections, allowing any network-based attacker to connect without...

9.8CVSS7.9AI score0.00957EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/13 5:34 p.m.31 views

CVE-2025-4660 Remote Code Execution in Windows Secure Connector/ HPS Inspection Engine via Insecure Named Pipe Access

A remote code execution vulnerability exists in the Windows agent component of SecureConnector due to improper access controls on a named pipe. The pipe is accessible to the Everyone group and does not restrict remote connections, allowing any network-based attacker to connect without...

8.7CVSS0.00957EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/13 5:34 p.m.10 views

CVE-2025-4660 Remote Code Execution in Windows Secure Connector/ HPS Inspection Engine via Insecure Named Pipe Access

A remote code execution vulnerability exists in the Windows agent component of SecureConnector due to improper access controls on a named pipe. The pipe is accessible to the Everyone group and does not restrict remote connections, allowing any network-based attacker to connect without...

8.7CVSS7.5AI score0.00957EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.6 views

PT-2025-21022

Name of the Vulnerable Software and Affected Versions Forescout SecureConnector versions 11.1.02.1019 through 11.3.6 Description A remote code execution vulnerability exists in the Windows agent component of SecureConnector due to improper access controls on a named pipe. The pipe is accessible t...

9.8CVSS6.5AI score0.00957EPSS
Exploits1References21
RedhatCVE
RedhatCVE
added 2025/04/11 8:22 p.m.41 views

CVE-2025-30651

A Buffer Access with Incorrect Length Value vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When an attacker sends a specific ICMPv6 packet to an interface with...

8.7CVSS6.9AI score0.00372EPSS
Exploits0References3
NVD
NVD
added 2025/04/09 8:15 p.m.47 views

CVE-2025-30649

An Improper Input Validation vulnerability in the syslog stream TCP transport of Juniper Networks Junos OS on MX240, MX480 and MX960 devices with MX-SPC3 Security Services Card allows an unauthenticated, network-based attacker, to send specific spoofed packets to cause a CPU Denial of Service DoS...

8.7CVSS0.00372EPSS
Exploits0References1
CVE
CVE
added 2025/04/09 8:5 p.m.76 views

CVE-2025-30660

CVE-2025-30660 affects Junos OS on Juniper MX Series with the Packet Forwarding Engine (pfe). The issue stems from an improper check for unusual conditions and can allow an unauthenticated, network-based attacker to trigger a DoS by processing a high rate of specific GRE traffic, causing the PFE ...

8.7CVSS6.9AI score0.00372EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/04/09 8:2 p.m.16 views

CVE-2025-30657 Junos OS: Processing of a specific BGP update causes the SRRD process to crash

An Improper Encoding or Escaping of Output vulnerability in the Sampling Route Record Daemon SRRD of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. When a device configured for flow-monitoring receives a specific BGP update message, i...

6.9CVSS0.00355EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/09 8:1 p.m.10 views

CVE-2025-30656 Junos OS: MX Series, SRX Series: Processing of specific SIP INVITE messages by the SIP ALG will lead to an FPC crash

An Improper Handling of Additional Special Element vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on MX Series with MS-MPC, MS-MIC and SPC3, and SRX Series, allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. If the SIP ALG processes...

8.7CVSS7.1AI score0.00372EPSS
Exploits0References1
Rows per page
Query Builder