Lucene search
K

11 matches found

ThreatPost
ThreatPost
added 2021/07/16 5:17 p.m.109 views

Critical Juniper Bug Allows DoS, RCE Against Carrier Networks

A critical remote code-execution vulnerability in Juniper Networks’ Steel-Belted Radius SBR Carrier Edition lays open wireless carrier and fixed operator networks to tampering. The SBR Carrier server is used by telecom carriers to manage policies for how subscribers access their networks – by...

9.8CVSS9.2AI score0.02314EPSS
Exploits0References6
OSV
OSV
added 2021/07/15 8:15 p.m.4 views

CVE-2021-0276

A stack-based Buffer Overflow vulnerability in Juniper Networks SBR Carrier with EAP Extensible Authentication Protocol authentication configured, allows an attacker sending specific packets causing the radius daemon to crash resulting with a Denial of Service DoS or leading to remote code...

9.8CVSS7.9AI score0.02314EPSS
Exploits0References1
NVD
NVD
added 2021/07/15 8:15 p.m.19 views

CVE-2021-0276

A stack-based Buffer Overflow vulnerability in Juniper Networks SBR Carrier with EAP Extensible Authentication Protocol authentication configured, allows an attacker sending specific packets causing the radius daemon to crash resulting with a Denial of Service DoS or leading to remote code...

9.8CVSS0.02314EPSS
Exploits0References1
CVE
CVE
added 2021/07/15 8:0 p.m.87 views

CVE-2021-0276

CVE-2021-0276 affects Juniper Networks SBR Carrier Edition with EAP authentication. A stack-based buffer overflow in the EAP server can be triggered by specially crafted packets, causing the RADIUS daemon to crash and potentially resulting in a DoS or remote code execution (RCE) . Affected versio...

9.8CVSS10AI score0.02314EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/07/14 12:0 a.m.8 views

PT-2021-3765 · Juniper Networks · Sbr Carrier

Name of the Vulnerable Software and Affected Versions: Juniper Networks SBR Carrier versions 8.4.1 through 8.4.1R18 Juniper Networks SBR Carrier versions 8.5.0 through 8.5.0R9 Juniper Networks SBR Carrier versions 8.6.0 through 8.6.0R3 Description: The issue is caused by a stack-based buffer...

9.8CVSS9.8AI score0.02314EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/12/17 12:0 a.m.7 views

The vulnerability of the process for creating management certificates, which involves identifying and accessing the server for service providers of Juniper Networks’ SBR Carrier, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the process for creating certificates that manage identity and access to servers for Juniper Networks SBR Carrier service providers is related to deficiencies in the protection of registration data. Exploiting this vulnerability could allow a perpetrator to gain unauthorized...

5.6CVSS5.9AI score0.00152EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2019/10/21 12:0 a.m.9 views

Unspecified Vulnerability in Juniper Networks SBR Carrier

Juniper Networks SBR Carrier is a set of AAA Authentication, Authorization and Accounting servers for carriers from Juniper Networks. The product provides network resource management, user access control and billing functions. A security vulnerability exists in Juniper Networks SBR Carrier versio...

5.6CVSS6.8AI score0.00152EPSS
Exploits0References1
Prion
Prion
added 2019/10/09 8:15 p.m.24 views

Design/Logic Flaw

An Unprotected Storage of Credentials vulnerability in the identity and access management certificate generation procedure allows a local attacker to gain access to confidential information. This issue affects: Juniper Networks SBR Carrier: 8.4.1 versions prior to 8.4.1R13; 8.5.0 versions prior t...

2.1CVSS5.5AI score0.00152EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/10/09 7:26 p.m.17 views

CVE-2019-0072 SBR Carrier: A vulnerability in the identity and access management certificate generation procedure allows a local attacker to gain access to confidential information.

An Unprotected Storage of Credentials vulnerability in the identity and access management certificate generation procedure allows a local attacker to gain access to confidential information. This issue affects: Juniper Networks SBR Carrier: 8.4.1 versions prior to 8.4.1R13; 8.5.0 versions prior t...

5.6CVSS5.5AI score0.00152EPSS
Exploits0References1
CVE
CVE
added 2019/10/09 7:26 p.m.60 views

CVE-2019-0072

Summary: CVE-2019-0072 describes an information-disclosure vulnerability in Juniper Networks SBR Carrier related to the identity and access management certificate generation procedure. Affected versions are 8.4.1 before 8.4.1R13 and 8.5.0 before 8.5.0R4. The issue arises from unprotected storage ...

5.6CVSS5.5AI score0.00152EPSS
Exploits0References1Affected Software1
Symantec
Symantec
added 2019/10/09 12:0 a.m.29 views

Juniper SBR Carrier CVE-2019-0072 Information Disclosure Vulnerability

Description Juniper SBR Carrier is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. The following product versions are affected: Juniper SBR Carrier versions from 8.4.1 prior to 8.4.1R13...

2.1AI score0.00152EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder