210 matches found
CVE-2023-28959 Junos OS: QFX10002: PFE wedges and restarts upon receipt of specific malformed packets
An Improper Check or Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on QFX10002 allows an unauthenticated, adjacent attacker on the local broadcast domain sending a malformed packet to the device, causing all PFEs other than the inbound PFE to...
CVE-2023-28961
CVE-2023-28961 affects Juniper Networks Junos OS on ACX Series devices. The vulnerability arises in IPv6 firewall filter processing where a filter term using from next-header ah cannot be installed in the packet forwarding engine (PFE) due to an unsupported IP-protocol (51) match, potentially all...
CVE-2023-22401
An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager daemon aftmand of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. On the PTX10008 and PTX10016 platforms running Junos ...
CVE-2023-22405
An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS to device due to out of resources. When a device...
CVE-2023-22401
An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager daemon aftmand of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. On the PTX10008 and PTX10016 platforms running Junos ...
CVE-2023-22405
An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS to device due to out of resources. When a device...
CVE-2023-22400
An Uncontrolled Resource Consumption vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS. When a specific SNMP GET operation or a specific CLI command...
CVE-2023-22400
An Uncontrolled Resource Consumption vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS. When a specific SNMP GET operation or a specific CLI command...
Input validation
An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager daemon aftmand of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. On the PTX10008 and PTX10016 platforms running Junos ...
Design/Logic Flaw
An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS to device due to out of resources. When a device...
CVE-2023-22399 Junos OS: QFX10K Series: PFE crash upon receipt of specific genuine packets when sFlow is enabled
When sFlow is enabled and it monitors a packet forwarded via ECMP, a buffer management vulnerability in the dcpfe process of Juniper Networks Junos OS on QFX10K Series systems allows an attacker to cause the Packet Forwarding Engine PFE to crash and restart by sending specific genuine packets to...
CVE-2023-22400
CVE-2023-22400 affects Juniper Networks Junos OS Evolved (evo-pfemand) and can cause an FPC crash/DoS due to a GUID leak triggered by specific SNMP GETs or CLI commands. Affected families include all versions before 20.4R3-S3-EVO; 21.1-EVO (21.1R1-EVO and later); all versions before 21.2R3-S4-EVO...
CVE-2023-22397
CVE-2023-22397 affects Juniper Networks Junos OS Evolved on PTX10003. The issue is an Allocation of Resources Without Limits or Throttling in the Packet Forwarding Engine (PFE) memory management, enabling an adjacent attacker to trigger a Time-of-check Time-of-use (TOCTOU) race that causes a memo...
CVE-2023-22400 Junos OS Evolved: A specific SNMP GET operation and a specific CLI commands cause resources to leak and eventually the evo-pfemand process will crash
An Uncontrolled Resource Consumption vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS. When a specific SNMP GET operation or a specific CLI command...
CVE-2023-22405 Junos OS: QFX5k Series, EX46xx Series: MAC limiting feature stops working after PFE restart or device reboot
An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS to device due to out of resources. When a device...
Juniper Junos OS Vulnerability (JSA70199)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA70199 advisory. - An Allocation of Resources Without Limits or Throttling vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows a network-based,...
CVE-2022-22234
An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows a locally authenticated attacker with low privileges to cause a Denial of Service DoS. If the device is very busy for...
CVE-2022-22235
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based, attacker to cause Denial of Service DoS. A PFE crash will happen when a GPRS Tunnel Protocol GTP packet is...
CVE-2022-22201
An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service DoS. On SRX5000 Series with SPC3, SRX4000 Series, and vSRX, when...
CVE-2022-22201
An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service DoS. On SRX5000 Series with SPC3, SRX4000 Series, and vSRX, when...