Lucene search
K

65 matches found

NCSC
NCSC
added 2 days ago15 views

Vulnerabilities found in Juniper Networks’ Junos OS and Junos OS Evolved

Juniper has identified several vulnerabilities in Junos OS and Junos OS Evolved, specifically related to devices in the MX Series, PTX Series, QFX Series, EX Series, SRX Series, and QFX10000 Series. These vulnerabilities affect various components of Junos OS and Junos OS Evolved, including the...

9.8CVSS7.1AI score0.02497EPSS
Exploits0References22
EUVD
EUVD
added 5 days ago7 views

EUVD-2026-42711

An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an unauthenticated, network-based attacker to cause a complete Denial of Service DoS. When TCP proxy is engaged in a flow session,...

8.7CVSS6AI score0.00461EPSS
Exploits0References2
NVD
NVD
added 6 days ago8 views

CVE-2026-57023

An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an unauthenticated, network-based attacker to cause a complete Denial of Service DoS. When TCP proxy is engaged in a flow session,...

8.7CVSS0.00461EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 6 days ago14 views

CVE-2026-57023

An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an unauthenticated, network-based attacker to cause a complete Denial of Service DoS. When TCP proxy is engaged in a flow session,...

8.7CVSS6AI score0.00461EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/07/08 12:0 a.m.10 views

Juniper Junos OS Vulnerability (JSA110083)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA110083 advisory. - An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an...

8.7CVSS6.1AI score0.00461EPSS
Exploits0References2
OSV
OSV
added 2026/05/21 9:27 a.m.2 views

CVE-2026-41999 Incorrect Behaviour of Views with TCP PROXY Requests

Incorrect Behaviour of Views with TCP PROXY Requests...

4.8CVSS5.9AI score0.00142EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/21 9:27 a.m.13 views

EUVD-2026-31262

Incorrect Behaviour of Views with TCP PROXY Requests...

4.8CVSS5.8AI score0.00142EPSS
Exploits0References1
CVE
CVE
added 2026/05/21 9:27 a.m.22 views

CVE-2026-41999

Technical details are not publicly available in the provided documents. Monitor for updates.

4.8CVSS5.8AI score0.00142EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/21 9:27 a.m.5 views

CVE-2026-41999

Incorrect Behaviour of Views with TCP PROXY Requests...

4.8CVSS5.8AI score0.00142EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/21 9:27 a.m.45 views

CVE-2026-41999 Incorrect Behaviour of Views with TCP PROXY Requests

Incorrect Behaviour of Views with TCP PROXY Requests...

4.8CVSS0.00142EPSS
Exploits0References1
OSV
OSV
added 2025/12/05 6:12 p.m.6 views

GHSA-RJ35-4M94-77JH Envoy forwards early CONNECT data in TCP proxy mode

Summary Forwarding of early CONNECT data in TCP proxy mode. Details Per RFC 7231-4.3.6 the sender of CONNECT and all inbound proxies switch to tunnel mode only after receiving 2xx response. However in TCP proxy mode, Envoy accepts client data before it has issued a 2xx response and eagerly proxie...

3.7CVSS6.5AI score0.00282EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/12/05 6:12 p.m.9 views

Envoy forwards early CONNECT data in TCP proxy mode

Summary Forwarding of early CONNECT data in TCP proxy mode. Details Per RFC 7231-4.3.6 the sender of CONNECT and all inbound proxies switch to tunnel mode only after receiving 2xx response. However in TCP proxy mode, Envoy accepts client data before it has issued a 2xx response and eagerly proxie...

5.3CVSS6.6AI score0.00282EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2025/12/03 6:15 p.m.7 views

CVE-2025-64763

Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.34.10, 1.35.6, 1.36.2, and earlier, when Envoy is configured in TCP proxy mode to handle CONNECT requests, it accepts client data before issuing a 2xx response and forwards that data to the upstream TCP connection. If a forwardi...

5.3CVSS0.00282EPSS
Exploits0References1
OSV
OSV
added 2025/12/03 6:13 p.m.5 views

CVE-2025-64763 Envoy forwards early CONNECT data in TCP proxy mode

Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.34.10, 1.35.6, 1.36.2, and earlier, when Envoy is configured in TCP proxy mode to handle CONNECT requests, it accepts client data before issuing a 2xx response and forwards that data to the upstream TCP connection. If a forwardi...

3.7CVSS6.7AI score0.00282EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/03 6:13 p.m.2 views

CVE-2025-64763 Envoy forwards early CONNECT data in TCP proxy mode

Envoy is a high-performance edge/middle/service proxy. In 1.33.12, 1.34.10, 1.35.6, 1.36.2, and earlier, when Envoy is configured in TCP proxy mode to handle CONNECT requests, it accepts client data before issuing a 2xx response and forwards that data to the upstream TCP connection. If a forwardi...

3.7CVSS6.4AI score0.00282EPSS
Exploits0References1
CVE
CVE
added 2025/12/03 6:13 p.m.22 views

CVE-2025-64763

Envoy CVE-2025-64763 relates to a de-synchronization risk in TCP proxy mode where Envoy may accept client data for CONNECT requests before sending a 2xx response, and then forward that data to the upstream connection. If the upstream proxy returns a non‑2xx status, the CONNECT tunnel state can be...

5.3CVSS6.4AI score0.00282EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/12/03 12:0 a.m.4 views

Envoy 安全漏洞

Envoy is an Enphase open source gateway program for connecting smart home devices. A security vulnerability exists in Envoy versions 1.33.12, 1.34.10, 1.35.6, 1.36.2, and prior versions, which stems from a state desynchronization issue when processing CONNECT requests in TCP proxy mode...

5.3CVSS6.5AI score0.00282EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-5845

Malware in sbrugna...

4.3CVSS6.4AI score0.02021EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-23142

Malware in sbrugna...

8.8CVSS8.7AI score0.00974EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-10244

Malware in sbrugna...

7.8CVSS6.8AI score0.029EPSS
Exploits0References3
Rows per page
Query Builder