127 matches found
CVE-2022-22215
CVE-2022-22215 describes a Denial of Service in Junos OS and Junos OS Evolved due to a missing release of file descriptors/handles after a gRPC connection ends. The root cause is that /var/run/.env files may not be deleted when a gRPC session terminates, potentially exhausting inodes. Affected pr...
CVE-2023-36839
The CVE-2023-36839 issue affects Juniper Networks Junos OS and Junos OS Evolved. Affected component: Layer-2 control protocols daemon (l2cpd). Root cause: Improper validation of specified quantity in input, triggered by specific LLDP packets from an unauthenticated adjacent attacker, leading to a...
CVE-2023-4481
CVE-2023-4481 describes an improper input validation in Juniper’s Routing Protocol Daemon (rpd) for Junos OS and Junos OS Evolved. A remote, unauthenticated attacker can cause a DoS by sending crafted BGP UPDATE messages over an existing BGP session; the impact can be sustained as updates are pro...
CVE-2024-30402
Summary of CVE-2024-30402 (Juniper Junos OS / Junos OS Evolved): The vulnerability stems from an improper check for unusual or exceptional conditions in the Layer 2 Address Learning Daemon (l2ald). When telemetry requests are received and the Dynamic Rendering Daemon (drend) is suspended, l2ald c...
CVE-2024-30386
CVE-2024-30386 is a Use-After-Free vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS and Junos OS Evolved. In EVPN-VXLAN deployments, state updates processed by adjacent systems may flow in an unsafe order, causing l2ald to crash and restart, leading to a D...
CVE-2024-30395
CVE-2024-30395 describes an improper validation of a BGP tunnel encapsulation attribute in Junos OS and Junos OS Evolved RPD, leading to an unauthenticated, network-based DoS. A BGP update containing a specifically malformed TLV can cause Routing Protocol Daemon (rpd) to crash and restart. Affect...
CVE-2023-44176
CVE-2023-44176 is a stack-based buffer overflow in the CLI command processing of Juniper Networks Junos OS. The vulnerability allows a low-privileged attacker to execute specific CLI commands, triggering a Denial of Service with repeated actions potentially sustaining it. Affected Junos OS versio...
CVE-2024-39534
CVE-2024-39534 affects Junos OS Evolved. An incorrect comparison in the local address verification API allows an unauthenticated, network-adjacent attacker to create sessions or send traffic using the subnet’s network and broadcast addresses, bypassing certain controls such as stateless firewall ...
CVE-2023-0026
The CVE-2023-0026 issue is a DoS in Juniper Networks Junos OS and Junos OS Evolved caused by improper input validation in the Routing Protocol Daemon (rpd). A remote, unauthenticated attacker can tear down a BGP session by sending an established-session BGP update containing a specific optional t...
CVE-2024-21615
CVE-2024-21615 concerns Juniper Networks Junos OS and Junos OS Evolved. The root cause is an Incorrect Default Privileges condition that, when NETCONF traceoptions are configured, can allow a local, low-privileged user to access confidential information after a super-user performs certain NETCONF...
CVE-2024-30380
CVE-2024-30380 affects Junos OS and Junos OS Evolved. An adjacent, unauthenticated attacker can trigger a DoS by sending a specific TLV that crashes the l2cpd process, reinitializing STP/RSTP/MSTP/VSTP, MVRP and ERP. Affected versions are: Junos OS: before 20.4R3-S9; 21.2 before 21.2R3-S7; 21.3 b...
CVE-2022-22196
CVE-2022-22196 affects Juniper Junos OS and Junos OS Evolved, in Routing Protocol Daemon (rpd). An adjacent, unauthenticated attacker with an ISIS adjacency can cause DoS by sending a malformed ISIS TLV, causing rpd CPU to spike to 100% and disrupt routing updates. Affected versions are: Junos OS...
CVE-2022-22195
CVE-2022-22195 describes an Improper Update of Reference Count vulnerability in the kernel of Juniper Networks Junos OS Evolved. An unauthenticated, network-based attacker can trigger a counter overflow, resulting in a Denial of Service (DoS). Affected: Junos OS Evolved — all versions before 20.4...
CVE-2022-22194
CVE-2022-22194 affects Juniper Networks Junos OS Evolved PTX10003/10004/10008 due to an improper check for unusual or exceptional conditions in the packetIO daemon. An unauthenticated, network-based attacker can cause a sustained denial-of-service by sending crafted packets. Affected versions are...
CVE-2023-44186
CVE-2023-44186 concerns Juniper Networks Junos OS and Junos OS Evolved. The issue is an Improper Handling of Exceptional Conditions in AS PATH processing that allows a BGP update with a very long AS PATH of 4-byte ASes to trigger a Denial of Service when NSR is enabled and advertising to a non-4-...
CVE-2022-22197
The CVE describes an Operation on a Resource after Expiration or Release vulnerability in Juniper Networks Junos OS and Junos OS Evolved’s Routing Protocol Daemon (rpd). An unauthenticated attacker with an established BGP session can cause a Denial of Service when proxy-generate route-target filt...
CVE-2024-39564
CVE-2024-39564 describes a double-free vulnerability in Juniper’s routing process daemon (rpd) for Junos OS and Junos OS Evolved. A malformed BGP Path attribute update can trigger a memory double-free in the rpd log path, causing the process to crash and resulting in a Denial of Service. Affected...
CVE-2025-30651
CVE-2025-30651 affects Juniper Networks Junos OS and Junos OS Evolved. A Buffer Access with Incorrect Length Value in the routing protocol daemon (rpd) can be triggered by a specific ICMPv6 packet to an interface configured with protocol router-advertisement, causing rpd to crash and restart and ...
CVE-2024-39552
CVE-2024-39552 affects Juniper Networks Junos OS and Junos OS Evolved: the RPD (routing protocol daemon) crashes when a malformed BGP UPDATE is received over an established BGP session, causing DoS. A network-based, unauthenticated attacker can trigger the crash via IPv4/IPv6 eBGP/iBGP traffic; i...
CVE-2022-22169
CVE-2022-22169 affects Juniper Networks Junos OS and Junos OS Evolved. An improper initialization in the routing protocol daemon (rpd) can cause OSPFv3 to enter graceful-restart GR helper mode when a attacker sends crafted packets in specific order/timing, potentially causing a DoS via a stalled ...
CVE-2024-30382
Juniper Networks Junos OS and Junos OS Evolved are affected by CVE-2024-30382 via an Improper Handling of Exceptional Conditions in the routing protocol daemon (rpd). A network-based, unauthenticated attacker can trigger a specific routing update when CB F (CoS-based forwarding) is configured wit...
CVE-2022-22220
The CVE-2022-22220 issue is a TOCTOU race condition in Juniper Junos OS/rpd that can crash the process when a BGP flow route with a redirect IP is received while the next-hop reachability is flapping, enabling a network-based DoS. Affected software includes Junos OS and Junos OS Evolved across li...
CVE-2024-30390
CVE-2024-30390 affects Juniper Networks Junos OS Evolved. The vulnerability is an improper restriction of excessive authentication attempts: after a connection is blocked for exceeding connections-per-second, the system does not consider existing connections for subsequent attempts, allowing the ...
CVE-2025-30653
CVE-2025-30653 describes an Expired Pointer Dereference in Juniper Networks Junos OS and Junos OS Evolved RPD (Routing Protocol Daemon). When an MPLS LSP is configured with node-link-protection and transport-class and an LSP flaps, rpd can crash and restart, causing a Denial of Service. Affected ...
CVE-2022-22214
CVE-2022-22214 describes an improper input validation in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS and Junos OS Evolved. An adjacent attacker can trigger a specific transit IPv6 packet over MPLS that causes an FPC to crash and reboot, with continued receipt leading to a sust...
CVE-2024-39515
CVE-2024-39515 affects Juniper Junos OS and Junos OS Evolved when BGP traceoptions are enabled. An unauthenticated network-based attacker can send a specifically malformed BGP packet to cause the routing protocol daemon (rpd) to crash and restart, producing a Denial of Service. Sustained processi...
CVE-2024-30394
CVE-2024-30394 affects Junos OS and Junos OS Evolved. It is a Stack-based Buffer Overflow in the Routing Protocol Daemon (RPD) triggered when EVPN is configured and a specific EVPN type-5 route is learned via BGP, causing an unauthenticated network-based attacker to crash rpd and induce DoS. Affe...
CVE-2024-39543
CVE-2024-39543 affects Juniper Networks Junos OS and Junos OS Evolved. The root cause is a buffer copy without input size validation in the routing protocol daemon (rpd), which allows an unauthenticated adjacent attacker to send crafted RPKI-RTR packets, crashing rpd and causing a DoS. Affected r...
CVE-2024-39557
CVE-2024-39557 describes an Uncontrolled Resource Consumption vulnerability in Juniper Networks Junos OS Evolved, caused by a memory leak in the Layer 2 Address Learning Daemon (l2ald) triggered by certain MAC table updates. This memory leak can exhaust system memory, causing a crash and DoS. Aff...
CVE-2025-21597
CVE-2025-21597 covers an issue in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. When BGP rib-sharding and update-threading are configured, a remote, unauthenticated, logically adjacent BGP peer can cause rpd to crash and restart via a specific timing of peer...
CVE-2022-22211
Summary: CVE-2022-22211 affects Juniper Networks Junos OS Evolved on PTX Series. A DoS occurs when an unprivileged attacker continuously polls the SNMP jnxCosQstatTable, exhausting FPC GUID space and rendering FPC resources unreachable. The issue manifests via specific syslog messages (evo-aftman...
CVE-2022-22225
TOCTOU race condition in Juniper Junos OS and Junos OS Evolved’s Routing Protocol Daemon (rpd) allows an unauthenticated attacker on an established BGP session to trigger a DoS by crashing rpd when a route in a BGP multipath flap scenario is a contributing route. Affected versions include Junos O...
CVE-2024-39516
CVE-2024-39516 is an Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. An unauthenticated network attacker can send a specially malformed BGP packet to cause rpd to crash and restart, producing a DoS. The issue affects iBGP/eB...
CVE-2023-22406
CVE-2023-22406 affects Juniper Networks Junos OS and Junos OS Evolved. It is a memory-leak/DoS issue in the kernel that manifests when a peer interface flaps in a Segment Routing scenario using OSPF, causing continuous memory growth in rpd and eventual rpd crash. Affected versions include Junos O...
CVE-2024-39514
CVE-2024-39514 affects Junos OS and Junos OS Evolved. An attacker—adjacent, unauthenticated—can trigger a crash of the Routing Protocol Daemon (rpd) by sending specific traffic on devices with EVPN-VPWS and IGMP-snooping enabled, causing a DoS. Affected ranges are listed per release: Junos OS ver...
CVE-2024-39558
CVE-2024-39558 affects Junos OS and Junos OS Evolved. An Unchecked Return Value in Routing Protocol Daemon (rpd) can be triggered by a specific PIM packet when MoFRR is configured, causing rpd to crash and reboot and leading to DoS. Impact is confirmed on multiple Junos OS/Junos OS Evolved versio...
CVE-2025-30655
CVE-2025-30655 affects Juniper Networks Junos OS and Junos OS Evolved. The issue is in the Routing Protocol Daemon (rpd) and causes a local, low-privileged attacker to trigger a Denial-of-Service by running the CLI command "show bgp neighbor" when BGP RIB sharding and update-threading are enabled...
CVE-2024-39528
CVE-2024-39528 — AUse After Free in Juniper Junos OS/Junos OS Evolved Routing Protocol Daemon (rpd) causes a segmentation fault on a specific sequence (routing-instance deactivation + SNMP request), leading to rpd crash and DoS. Affected: Junos OS and Junos OS Evolved. Reported vulnerable version...
CVE-2023-44177
CVE-2023-44177 affects Juniper Networks Junos OS and Junos OS Evolved. It is a stack-based buffer overflow in the CLI command processing that allows a low-privileged attacker to cause a Denial of Service by executing targeted CLI commands. Repeated actions can sustain DoS. Affected versions inclu...
CVE-2023-44185
CVE-2023-44185 affects Juniper Junos OS and Junos OS Evolved. It is an Improper Input Validation in the routing protocol daemon (rpd) that allows an attacker to cause a Denial of Service by processing a specific malformed ISO VPN BGP UPDATE packet. Continued receipt yields a sustained DoS on the ...
CVE-2024-39520
CVE-2024-39520: An Improper Neutralization of Special Elements vulnerability in Junos OS Evolved CLI parameter handling allows a locally authenticated, low-privilege attacker to escalate to root. Affected versions include all before 20.4R3-S6-EVO; 21.2-EVO before 21.2R3-S4-EVO; 21.4-EVO before 21...
CVE-2025-30654
CVE-2025-30654 affects Junos OS and Junos OS Evolved. A local, low-privileged attacker with CLI access can exploit the UI via a specific show mgd command to view sensitive information, including password hashes. Affected versions include Junos OS pre-21.4R3-S10, 22.2 before 22.2R3-S5, 22.4 before...
CVE-2022-22224
The CVE-2022-22224 issue affects Juniper Networks Junos OS and Junos OS Evolved, where processing a malformed OSPF TLV can cause the periodic packet management daemon (PPMD) to enter an infinite loop. This unblocks an unauthenticated adjacent attacker to induce a DoS by affecting OSPF neighbor re...
CVE-2022-22250
CVE-2022-22250 affects Juniper Networks Junos OS and Junos OS Evolved PFE. An improper control of a resource through its lifetime allows an unauthenticated adjacent attacker to cause a DoS via memory corruption when EVPN-MPLS MAC learned locally is deleted as remotely learned, potentially causing...
CVE-2023-44201
Summary: CVE-2023-44201 affects Juniper Networks Junos OS and Junos OS Evolved. A local authenticated attacker can exploit an incorrect permission assignment for a critical resource to read configuration changes, potentially exposing password hashes during password changes. Affected products/vers...
CVE-2024-39517
The CVE-2024-39517 issue affects Juniper Networks Junos OS and Junos OS Evolved, specifically the Layer 2 Address Learning Daemon (l2ald). In EVPN/VXLAN deployments, processing a high volume of certain Layer 2 packets can cause the Routing Protocol Daemon (rpd) to consume all CPU resources, leadi...
CVE-2024-39556
Summary of CVE-2024-39556 : A stack-based buffer overflow vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker with CLI access to load a crafted certificate via the set security certificates command, potentially crashing the command management da...
CVE-2023-22397
CVE-2023-22397 affects Juniper Networks Junos OS Evolved on PTX10003. The issue is an Allocation of Resources Without Limits or Throttling in the Packet Forwarding Engine (PFE) memory management, enabling an adjacent attacker to trigger a Time-of-check Time-of-use (TOCTOU) race that causes a memo...
CVE-2023-22407
The CVE-2023-22407 entry describes an Incomplete Cleanup vulnerability in Juniper Networks Junos OS and Junos OS Evolved, affecting the Routing Protocol Daemon (rpd). The issue can allow an adjacent, unauthenticated attacker to cause a Denial of Service (DoS) by triggering an rpd crash when an MP...
CVE-2023-44182
CVE-2023-44182 affects Juniper Networks Junos OS and Junos OS Evolved, via an unchecked return value in multiple user interfaces (CLI, XML API, XML Management Protocol, NETCONF, gNMI, and J-Web) that can cause privilege demotion/elevation based on operator actions. Affected are Junos OS versions ...