CVE-2024-39537

CVE-2024-39537 affects Juniper Networks Junos OS Evolved on the ACX 7000 Series. Root cause: initialization error allows processes that should be internal to be reachable over the network via open ports, enabling an unauthenticated, network-based attacker to cause limited information disclosure a...

CVE-2024-39537 Junos OS Evolved: ACX7000 Series: Ports which have been inadvertently exposed can be reached over the network

An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, network-based attacker to cause a limited information disclosure and availability impact to the device. Due to a wrong...

CVE-2024-39533 Junos OS: QFX5000 Series and EX4600 Series: Output firewall filter is not applied if certain match criteria are used

An Unimplemented or Unsupported Feature in the UI vulnerability in Juniper Networks Junos OS on QFX5000 Series and EX4600 Series allows an unauthenticated, network-based attacker to cause a minor integrity impact to downstream networks.If one or more of the following match conditions...

CVE-2024-39533

CVE-2024-39533 affects Junos OS on QFX5000 Series and EX4600 Series where an Unimplemented or Unsupported Feature in the UI allows an unauthenticated, network-based attacker to cause a minor integrity impact on downstream networks when certain match conditions (ip-source-address, ip-destination-a...

CVE-2024-39531 Junos OS Evolved: ACX 7000 Series: Protocol specific DDoS configuration affects other protocols

An Improper Handling of Values vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX 7000 Series allows a network-based, unauthenticated attacker to cause a Denial-of-Service DoS. If a value is configured for DDoS bandwidth or burst parameters for any...

CVE-2024-39528

CVE-2024-39528 — AUse After Free in Juniper Junos OS/Junos OS Evolved Routing Protocol Daemon (rpd) causes a segmentation fault on a specific sequence (routing-instance deactivation + SNMP request), leading to rpd crash and DoS. Affected: Junos OS and Junos OS Evolved. Reported vulnerable version...

CVE-2024-39528 Junos OS and Junos OS Evolved: Concurrent deletion of a routing-instance and receipt of an SNMP request cause an RPD crash

A Use After Free vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated, network-based attacker to cause a Denial of Service DoS.On all Junos OS and Junos Evolved platforms, if a routing-instance deactivation is triggered, and at...

Juniper Networks Junos OS Security Vulnerability

Juniper Networks Junos OS is a Juniper Networks USA network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS that stems from the presence of an...

Juniper Networks Junos OS Security Vulnerability

Juniper Networks Junos OS is a Juniper Networks USA network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a security vulnerability that originates from the presence of an...

Juniper Networks Junos OS Evolved Security Vulnerability

Juniper Networks Junos OS Evolved is an upgraded version of Juniper Networks' Junos OS. A security vulnerability exists in Juniper Networks Junos OS Evolved that stems from the presence of a value mishandling vulnerability that could allow an unauthenticated network-based attacker to cause a deni...

Juniper Networks Junos OS Security Vulnerability

Juniper Networks Junos OS is a Juniper Networks USA network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. Juniper Networks Junos OS has a security vulnerability that originates from the presence of an...

CVE-2024-39559

An Improper Check for Unusual or Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS Evolved may allow a network-based unauthenticated attacker to crash the device vmcore by sending a specific TCP packet over an established TCP session with MD5 authentication...

CVE-2024-39565 Junos OS: J-Web: An unauthenticated, network-based attacker can perform XPATH injection attack against a device.

An Improper Neutralization of Data within XPath Expressions 'XPath Injection' vulnerability in J-Web shipped with Juniper Networks Junos OS allows an unauthenticated, network-based attacker to execute remote commands on the target device. While an administrator is logged into a J-Web session or...

Juniper Junos OS Vulnerability (JSA82989)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA82989 advisory. - An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis management daemon chassisd of Juniper Networks Junos OS allows an unauthenticated,...

Juniper Junos OS Vulnerability (JSA83010)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA83010 advisory. - An Uncontrolled Resource Consumption vulnerability in the aftmand process of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to consume...

Juniper Junos OS Vulnerability (JSA83000)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA83000 advisory. - An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS on SRX Series, and MX Series with SP...

Juniper Junos OS Vulnerability (JSA83007)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA83007 advisory. - An Improper Check for Unusual or Exceptional Conditions vulnerability in the the IKE daemon iked of Juniper Networks Junos OS on SRX Series, MX Series with SPC3 and NFX350...

Juniper Junos OS Vulnerability (JSA79101)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA79101 advisory. - An Exposure of Resource to Wrong Sphere vulnerability in the sampling service of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to send...

Juniper Junos OS Vulnerability (JSA83023)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA83023 advisory. - An Improper Neutralization of Data within XPath Expressions 'XPath Injection' vulnerability in J-Web shipped with Juniper Networks Junos OS allows an unauthenticated,...

Juniper Junos OS Vulnerability (JSA82993)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA82993 advisory. - An Unimplemented or Unsupported Feature in the UI vulnerability in Juniper Networks Junos OS on QFX5000 Series and EX4600 Series allows an unauthenticated, network-based...