Lucene search
+L

210 matches found

Vulnrichment
Vulnrichment
added 2023/04/17 12:0 a.m.10 views

CVE-2023-28959 Junos OS: QFX10002: PFE wedges and restarts upon receipt of specific malformed packets

An Improper Check or Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on QFX10002 allows an unauthenticated, adjacent attacker on the local broadcast domain sending a malformed packet to the device, causing all PFEs other than the inbound PFE to...

6.5CVSS6.5AI score0.00303EPSS
Exploits0References1
CVE
CVE
added 2023/04/17 12:0 a.m.63 views

CVE-2023-28961

CVE-2023-28961 affects Juniper Networks Junos OS on ACX Series devices. The vulnerability arises in IPv6 firewall filter processing where a filter term using from next-header ah cannot be installed in the packet forwarding engine (PFE) due to an unsupported IP-protocol (51) match, potentially all...

5.8CVSS5.4AI score0.00417EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/01/13 12:15 a.m.5 views

CVE-2023-22401

An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager daemon aftmand of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. On the PTX10008 and PTX10016 platforms running Junos ...

7.5CVSS7.1AI score0.00616EPSS
Exploits0References1
NVD
NVD
added 2023/01/13 12:15 a.m.20 views

CVE-2023-22405

An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS to device due to out of resources. When a device...

6.5CVSS6.5AI score0.00309EPSS
Exploits0References1
NVD
NVD
added 2023/01/13 12:15 a.m.44 views

CVE-2023-22401

An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager daemon aftmand of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. On the PTX10008 and PTX10016 platforms running Junos ...

7.5CVSS7.5AI score0.00616EPSS
Exploits0References1
OSV
OSV
added 2023/01/13 12:15 a.m.8 views

CVE-2023-22405

An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS to device due to out of resources. When a device...

6.5CVSS6.6AI score0.00309EPSS
Exploits0References1
OSV
OSV
added 2023/01/13 12:15 a.m.7 views

CVE-2023-22400

An Uncontrolled Resource Consumption vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS. When a specific SNMP GET operation or a specific CLI command...

7.5CVSS7.1AI score0.00616EPSS
Exploits0References1
NVD
NVD
added 2023/01/13 12:15 a.m.24 views

CVE-2023-22400

An Uncontrolled Resource Consumption vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS. When a specific SNMP GET operation or a specific CLI command...

7.5CVSS7.6AI score0.00616EPSS
Exploits0References1
Prion
Prion
added 2023/01/13 12:15 a.m.22 views

Input validation

An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager daemon aftmand of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. On the PTX10008 and PTX10016 platforms running Junos ...

5CVSS7.4AI score0.00616EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2023/01/13 12:15 a.m.19 views

Design/Logic Flaw

An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS to device due to out of resources. When a device...

3.3CVSS6.5AI score0.00309EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/12 12:0 a.m.8 views

CVE-2023-22399 Junos OS: QFX10K Series: PFE crash upon receipt of specific genuine packets when sFlow is enabled

When sFlow is enabled and it monitors a packet forwarded via ECMP, a buffer management vulnerability in the dcpfe process of Juniper Networks Junos OS on QFX10K Series systems allows an attacker to cause the Packet Forwarding Engine PFE to crash and restart by sending specific genuine packets to...

7.5CVSS7.7AI score0.00635EPSS
Exploits0References2
CVE
CVE
added 2023/01/12 12:0 a.m.78 views

CVE-2023-22400

CVE-2023-22400 affects Juniper Networks Junos OS Evolved (evo-pfemand) and can cause an FPC crash/DoS due to a GUID leak triggered by specific SNMP GETs or CLI commands. Affected families include all versions before 20.4R3-S3-EVO; 21.1-EVO (21.1R1-EVO and later); all versions before 21.2R3-S4-EVO...

7.5CVSS7.6AI score0.00616EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/01/12 12:0 a.m.62 views

CVE-2023-22397

CVE-2023-22397 affects Juniper Networks Junos OS Evolved on PTX10003. The issue is an Allocation of Resources Without Limits or Throttling in the Packet Forwarding Engine (PFE) memory management, enabling an adjacent attacker to trigger a Time-of-check Time-of-use (TOCTOU) race that causes a memo...

6.1CVSS6.5AI score0.00181EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/01/12 12:0 a.m.26 views

CVE-2023-22400 Junos OS Evolved: A specific SNMP GET operation and a specific CLI commands cause resources to leak and eventually the evo-pfemand process will crash

An Uncontrolled Resource Consumption vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS. When a specific SNMP GET operation or a specific CLI command...

7.5CVSS7.8AI score0.00616EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/12 12:0 a.m.31 views

CVE-2023-22405 Junos OS: QFX5k Series, EX46xx Series: MAC limiting feature stops working after PFE restart or device reboot

An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS to device due to out of resources. When a device...

6.5CVSS6.7AI score0.00309EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/01/12 12:0 a.m.82 views

Juniper Junos OS Vulnerability (JSA70199)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA70199 advisory. - An Allocation of Resources Without Limits or Throttling vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows a network-based,...

7.5CVSS7.4AI score0.00644EPSS
Exploits0References5
OSV
OSV
added 2022/10/18 3:15 a.m.4 views

CVE-2022-22234

An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows a locally authenticated attacker with low privileges to cause a Denial of Service DoS. If the device is very busy for...

5.5CVSS5.8AI score0.00174EPSS
Exploits0References1
OSV
OSV
added 2022/10/18 3:15 a.m.7 views

CVE-2022-22235

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based, attacker to cause Denial of Service DoS. A PFE crash will happen when a GPRS Tunnel Protocol GTP packet is...

7.5CVSS5.8AI score0.00586EPSS
Exploits0References1
NVD
NVD
added 2022/10/18 3:15 a.m.14 views

CVE-2022-22201

An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service DoS. On SRX5000 Series with SPC3, SRX4000 Series, and vSRX, when...

7.5CVSS0.00616EPSS
Exploits0References1
OSV
OSV
added 2022/10/18 3:15 a.m.6 views

CVE-2022-22201

An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service DoS. On SRX5000 Series with SPC3, SRX4000 Series, and vSRX, when...

7.5CVSS5.8AI score0.00616EPSS
Exploits0References1
Rows per page
Query Builder