Lucene search
+L

131 matches found

CVE
CVE
added 2024/07/10 11:6 p.m.63 views

CVE-2024-39517

The CVE-2024-39517 issue affects Juniper Networks Junos OS and Junos OS Evolved, specifically the Layer 2 Address Learning Daemon (l2ald). In EVPN/VXLAN deployments, processing a high volume of certain Layer 2 packets can cause the Routing Protocol Daemon (rpd) to consume all CPU resources, leadi...

7.1CVSS6.5AI score0.00246EPSS
CVE
CVE
added 2023/01/12 12:0 a.m.62 views

CVE-2023-22397

CVE-2023-22397 affects Juniper Networks Junos OS Evolved on PTX10003. The issue is an Allocation of Resources Without Limits or Throttling in the Packet Forwarding Engine (PFE) memory management, enabling an adjacent attacker to trigger a Time-of-check Time-of-use (TOCTOU) race that causes a memo...

6.1CVSS6.5AI score0.00181EPSS
CVE
CVE
added 2023/10/12 11:5 p.m.62 views

CVE-2023-44197

CVE-2023-44197 describes an Out-of-Bounds Write in Juniper’s Routing Protocol Daemon (rpd) that allows an unauthenticated, network-based attacker to cause a DoS by crashing the rpd while processing BGP route updates. Affected products are Junos OS and Junos OS Evolved. Supported versions include:...

7.5CVSS7.4AI score0.00515EPSS
CVE
CVE
added 2024/10/09 8:1 p.m.62 views

CVE-2024-39525

CVE-2024-39525 affects Juniper Networks Junos OS and Junos OS Evolved. The issue is an improper handling of exceptional conditions in the routing protocol daemon (rpd) that can be triggered by an unauthenticated network-based attacker sending a crafted BGP packet, causing rpd to crash and restart...

8.7CVSS7.6AI score0.00434EPSS
CVE
CVE
added 2024/07/11 4:26 p.m.62 views

CVE-2024-39548

CVE-2024-39548 describes an Uncontrolled Resource Consumption vulnerability in the aftmand process of Juniper Networks Junos OS Evolved. An unauthenticated, network-based attacker can cause memory consumption leading to a Denial of Service; affected systems do not recover automatically and requir...

7.5CVSS7.5AI score0.00491EPSS
CVE
CVE
added 2024/07/10 10:42 p.m.62 views

CVE-2024-39559

Junos OS Evolved vulnerability CVE-2024-39559 affects dual RE systems with NSR enabled. An unauthenticated network attacker can crash the device (vmcore) by sending a specific TCP packet over an established session using MD5 authentication (e.g., BGP with MD5). The issue stems from an improper ch...

8.2CVSS6AI score0.00398EPSS
CVE
CVE
added 2025/04/09 7:53 p.m.62 views

CVE-2025-30646

CVE-2025-30646 affects Junos OS and Junos OS Evolved. A Signed to Unsigned Conversion Error in the Layer 2 Control Protocol daemon (l2cpd) allows an unauthenticated adjacent attacker to cause the l2cpd process to crash and restart by sending a specially formed LLDP TLV, yielding a Denial of Servi...

7.1CVSS7AI score0.00235EPSS
CVE
CVE
added 2023/10/11 9:0 p.m.61 views

CVE-2023-44189

CVE-2023-44189 affects Juniper Networks Junos OS Evolved on PTX10003 Series. The issue is an Origin Validation vulnerability in MAC address validation that lets a network-adjacent attacker bypass MAC checks, causing MACs not intended for the adjacent LAN to be forwarded to the downstream network,...

6.1CVSS5.7AI score0.0018EPSS
CVE
CVE
added 2023/10/11 9:4 p.m.61 views

CVE-2023-44190

CVE-2023-44190 concerns an Origin Validation vulnerability in MAC address validation on Juniper Networks Junos OS Evolved for PTX10001/PTX10004/PTX10008/PTX10016. The root cause is bypass of MAC address checking, allowing a network-adjacent attacker to forward MAC addresses not intended for the a...

6.1CVSS5.7AI score0.00167EPSS
CVE
CVE
added 2026/07/09 9:2 p.m.61 views

CVE-2026-33799

CVE-2026-33799 describes an Out-of-bounds Write in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved. An authenticated remote attacker can send specific valid SNMPv3 queries to trigger a memory leak, causing snmpd memory exhaustion over time, a resulting process crash, and...

5.3CVSS6AI score0.00368EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.60 views

CVE-2022-22238

The vulnerability CVE-2022-22238 affects Juniper Networks Junos OS and Junos OS Evolved. An unauthenticated, adjacent attacker can trigger a Denial of Service by sending a malformed RESV message for a protected LSP, causing an incorrect internal state and an rpd core. Affected are Junos OS and Ju...

6.5CVSS5.8AI score0.00282EPSS
CVE
CVE
added 2024/07/11 4:0 p.m.60 views

CVE-2024-39523

CVE-2024-39523 is a local, authenticated-then-privilege-escalation issue in Juniper Networks Junos OS Evolved CLI handling of command options. A crafted parameter set can escalate to root on the shell, resulting in full compromise. Affected: Junos OS Evolved versions before 20.4R3-S7-EVO; 21.2-EV...

8.5CVSS7.9AI score0.0025EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.59 views

CVE-2022-22239

Vulnerability summary: An Execution with Unnecessary Privileges in the Management Daemon (mgd) of Juniper Networks Junos OS Evolved allows a locally authenticated attacker with low privileges to escalate to root on the device, and potentially to remote systems with user interaction on the local d...

8.8CVSS8.6AI score0.00175EPSS
CVE
CVE
added 2023/10/12 11:2 p.m.59 views

CVE-2023-44184

The CVE-2023-44184 issue affects Juniper Networks Junos OS and Junos OS Evolved in the mgd (management daemon) component. A memory-buffer bound check violation allows a network-based, authenticated, low-privileged attacker to execute a specific NETCONF command that can cause CPU denial of service...

6.5CVSS6.5AI score0.00502EPSS
CVE
CVE
added 2023/10/11 8:37 p.m.59 views

CVE-2023-44187

The CVE affects Juniper Junos OS Evolved: the 'file copy' CLI command can disclose passwords entered on the command line to a local attacker with shell access. Affected versions require upgrading to fixed releases: 20.4R3-S7-EVO or later; 21.1R1-EVO to 21.2R3-S5-EVO or later; 21.2R3-S5-EVO or lat...

5.9CVSS5.6AI score0.00169EPSS
CVE
CVE
added 2024/07/11 4:1 p.m.59 views

CVE-2024-39524

The CVE concerns Juniper Networks Junos OS Evolved CLI: an Improper Neutralization of Special Elements in CLI command option handling allows a local, authenticated user with LOW privileges to escalate to root, potentially compromising the entire system. Affected versions are: all before 20.4R3-S7...

8.5CVSS7.9AI score0.0025EPSS
CVE
CVE
added 2024/07/10 10:47 p.m.58 views

CVE-2024-39562

Junos OS Evolved is affected by CVE-2024-39562 due to a Missing Release of Resource after Effective Lifetime in the xinetd process, which can crash and leave defunct sshd processes under high concurrent SSH load. This denial-of-service blocks SSH access and dependent SSH services (SFTP, Netconf o...

8.7CVSS7.5AI score0.00434EPSS
CVE
CVE
added 2020/04/08 7:25 p.m.57 views

CVE-2020-1620

CVE-2020-1620 : A local, authenticated user can obtain hashed login passwords via the configd streamer log in Juniper Networks Junos OS Evolved before version 19.3R1. Affected component: configd streamer log. Root cause: disclosure of password hashes through log output. Impact: confidential data ...

5.5CVSS5.4AI score0.00315EPSS
CVE
CVE
added 2024/07/10 11:3 p.m.57 views

CVE-2024-39513

CVE-2024-39513 maps to a local, low-privilege DoS in Juniper Networks Junos OS Evolved due to an Improper Input Validation in the Packet Forwarding Engine (PFE). The vulnerability is triggered by a specific CLI command; when executed, the Advanced Forwarding Toolkit (evo-aftmand-bt/zx) crashes an...

6.8CVSS5.5AI score0.00142EPSS
CVE
CVE
added 2020/04/08 7:25 p.m.56 views

CVE-2020-1621

CVE-2020-1621 affects Juniper Networks Junos OS Evolved prior to 19.3R1. A local, authenticated user with shell can obtain the hashed values of login passwords via configd traces, indicating a confidentiality impact through leakage of credentials. The vulnerability originates from exposed log/tra...

5.5CVSS5.4AI score0.00315EPSS
CVE
CVE
added 2023/04/17 12:0 a.m.56 views

CVE-2023-28964

CVE-2023-28964 affects Juniper Networks Junos OS and Junos OS Evolved. The vulnerability arises from an improper handling of a length parameter in the routing protocol daemon (RPD) that processes BGP flowspec updates. A network-based, unauthenticated attacker can send malformed BGP flowspec data ...

7.5CVSS7.5AI score0.00644EPSS
CVE
CVE
added 2023/10/12 11:1 p.m.56 views

CVE-2023-44178

CVE-2023-44178 describes a stack-based buffer overflow in the CLI command processing of Juniper Networks Junos OS. A low-privilege attacker can trigger the overflow by executing specific CLI commands, resulting in a Denial of Service (DoS); repeated actions cause a sustained DoS. Affected Junos O...

5.5CVSS5.8AI score0.00163EPSS
CVE
CVE
added 2024/07/11 4:14 p.m.56 views

CVE-2024-39538

Junos OS Evolved on ACX7000 Series is affected by CVE-2024-39538 due to a Buffer Copy without Checking Size of Input in evo-pfemand (PFE management daemon). An unauthenticated, adjacent attacker can cause a Denial-of-Service by sending multicast traffic with a specific (S,G); evo-pfemand crashes,...

7.1CVSS6.5AI score0.00332EPSS
CVE
CVE
added 2024/07/11 4:4 p.m.55 views

CVE-2024-39531

The CVE-2024-39531 entry affects Junos OS Evolved on ACX 7000 Series. The vulnerability lies in the Packet Forwarding Engine (PFE) where configuring DDoS bandwidth or burst parameters for any protocol in a queue causes all protocols sharing that queue to adopt the new value. This can inadvertentl...

8.7CVSS7.5AI score0.00437EPSS
CVE
CVE
added 2024/07/10 10:44 p.m.55 views

CVE-2024-39560

Juniper Junos OS and Junos OS Evolved are affected by CVE-2024-39560 via the routing protocol daemon (rpd). The issue is an improper handling of exceptional conditions that lets a logically adjacent downstream RSVP neighbor induce kernel memory exhaustion and a DoS. Affected ranges include multip...

7.1CVSS6.4AI score0.00248EPSS
CVE
CVE
added 2025/04/09 7:50 p.m.55 views

CVE-2025-21595

A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS and Junos OS Evolved can cause an FPC crash and DoS. In EVPN-VXLAN, receiving specific ARP (IPv4) or NDP (IPv6) packets triggers kernel heap memory leaks and event...

7.1CVSS7AI score0.00246EPSS
CVE
CVE
added 2023/07/14 5:43 p.m.54 views

CVE-2023-36840

Summary (CVE-2023-36840) A reachable-assertion vulnerability in Juniper’s Routing Protocol Daemon (RPD) on Junos OS and Junos OS Evolved can be exploited by a locally authenticated, low-privilege user when running a specific L2VPN command to cause a DoS (RPD crash/restart). Affected products/vers...

5.5CVSS5.5AI score0.00194EPSS
CVE
CVE
added 2024/07/10 10:36 p.m.54 views

CVE-2024-39555

Summary of vulnerability (CVE-2024-39555): Juniper Networks Junos OS and Junos OS Evolved RPD mishandles certain malformed BGP Update messages when segment routing is enabled, causing session resets and potential DoS. A remote attacker must have at least one established BGP session; affected are ...

8.7CVSS7.7AI score0.00503EPSS
CVE
CVE
added 2024/10/11 3:22 p.m.54 views

CVE-2024-47489

CVE-2024-47489 (Junos OS Evolved, ACX Series) is a vulnerability in the Packet Forwarding Engine (pfe) where the Routing Engine’s handling of specific transit protocol packets can fill the shared DDoS protection queue, causing protocol flaps and partial DoS of downstream devices. It affects IPv4 ...

6.9CVSS5.7AI score0.00631EPSS
CVE
CVE
added 2023/04/17 12:0 a.m.53 views

CVE-2023-28973

CVE-2023-28973 is an improper authorization vulnerability in Juniper Networks Junos OS Evolved, exposing the local sysmanctl shell command to authenticated users who can run administrative actions (daemon restart, RE switchover, node shutdown). Affected products/versions include Junos OS Evolved ...

7.1CVSS7.2AI score0.00146EPSS
CVE
CVE
added 2024/10/11 3:35 p.m.53 views

CVE-2024-47505

CVE-2024-47505 concerns Juniper Networks Junos OS Evolved, affecting the PFE management daemon evo-pfemand. The vulnerability is a GUID resource leak (allocation of resources without limits/throttling) that occurs when specific SNMP GET operations or low-privilege CLI commands are run. This can e...

7.1CVSS6.5AI score0.00375EPSS
CVE
CVE
added 2020/04/08 7:25 p.m.52 views

CVE-2020-1624

CVE-2020-1624 affects Junos OS Evolved prior to 19.1R1. A local, authenticated user can access raw objmon configuration files and obtain hashed values of login passwords and shared secrets, leaking sensitive information. The impact is confined to confidentiality of credentials via object monitori...

5.5CVSS5.4AI score0.00315EPSS
CVE
CVE
added 2024/10/11 3:23 p.m.52 views

CVE-2024-47491

Summary: CVE-2024-47491 affects Juniper Networks Junos OS and Junos OS Evolved. A network-based, unauthenticated attacker can cause a DoS by sending a BGP UPDATE with a malformed path attribute to an established BGP session; the Routing Protocol Daemon (rpd) crashes and restarts, potentially lead...

8.2CVSS5.8AI score0.00572EPSS
CVE
CVE
added 2024/10/11 3:31 p.m.52 views

CVE-2024-47502

CVE-2024-47502 affects Juniper Networks Junos OS Evolved. The issue is an Allocation of Resources Without Limits or Throttling in the kernel that can allow an unauthenticated, network-based attacker to trigger a DoS. In IPv4-only scenarios, TCP sessions terminated on the Routing Engine may not ha...

8.7CVSS7.5AI score0.00612EPSS
CVE
CVE
added 2024/10/11 3:36 p.m.52 views

CVE-2024-47509

The CVE covers an Allocation of Resources Without Limits or Throttling in Junos OS Evolved’s PFE management daemon evo-pfemand, causing a GUID resource leak that exhausts GUID space and can hang FPCs (DoS) when certain SNMP GETs or low-privileged CLI commands are used. Affected Junos OS Evolved r...

7.1CVSS6.5AI score0.00375EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.51 views

CVE-2022-22240

CVE-2022-22240 affects Juniper Networks Junos OS and Junos OS Evolved. The vulnerability is an rpd memory issue caused by Allocation of Resources Without Limits or Throttling and a Missing Release of Memory after Effective Lifetime, leading to a potential Denial of Service when running a specific...

5.5CVSS5.6AI score0.00193EPSS
CVE
CVE
added 2024/10/11 3:38 p.m.51 views

CVE-2024-47507

CVE-2024-47507 affects Junos OS and Junos OS Evolved. The issue is in the routing protocol daemon (rpd): when a BGP update carries an aggregator attribute with an ASN value of zero, rpd accepts and propagates it, causing potential integrity impacts on downstream peers. Affected versions include: ...

6.9CVSS5.7AI score0.00283EPSS
CVE
CVE
added 2024/10/11 3:35 p.m.51 views

CVE-2024-47508

This CVE refers to an Allocation of Resources Without Limits or Throttling in Juniper Junos OS Evolved, affecting evo-pfemand (PFE management daemon). The vulnerability arises from a GUID resource leak when specific SNMP GETs or low-privilege CLI commands are used, leading to exhaustion, FPC hang...

7.1CVSS6.5AI score0.00375EPSS
CVE
CVE
added 2020/04/08 7:25 p.m.50 views

CVE-2020-1622

Junos OS Evolved is affected. A local, authenticated user can access the EvoSharedObjStore and obtain hashed login passwords and shared secrets, leaking confidential data. Affected versions are all prior to 19.1R1; remediation is to upgrade to 19.1R1 or later. Exploitation status is not detailed ...

5.5CVSS5.4AI score0.00315EPSS
CVE
CVE
added 2020/04/08 7:25 p.m.50 views

CVE-2020-1623

CVE-2020-1623 affects Junos OS Evolved prior to 19.2R1. A local, authenticated user can view sensitive information from the ev.ops configuration file, leaking data with partial confidentiality impact (per CVSS v2) and high confidentiality impact (per CVSS v3.1). Exploitation details are not provi...

5.5CVSS5.2AI score0.00315EPSS
CVE
CVE
added 2024/10/11 3:22 p.m.50 views

CVE-2024-47490

The CVE-2024-47490 issue affects Junos OS Evolved ACX 7000 Series. Affected are all versions before: 21.4R3-S9-EVO, 22.2-EVO before 22.2R3-S4-EVO, 22.3-EVO before 22.3R3-S3-EVO, 22.4-EVO before 22.4R3-S2-EVO, 23.2-EVO before 23.2R2-EVO, and 23.4-EVO before 23.4R1-S1-EVO / 23.4R2-EVO. The vulnerab...

8.2CVSS8.2AI score0.0056EPSS
CVE
CVE
added 2023/04/17 12:0 a.m.49 views

CVE-2023-28966

CVE-2023-28966 describes an "Incorrect Default Permissions" vulnerability in Juniper Networks Junos OS Evolved. The root cause is improper file and directory permissions on certain system files, enabling a local, low-privileged attacker with shell access to inject CLI commands or modify files as ...

7.8CVSS7.6AI score0.00163EPSS
CVE
CVE
added 2023/10/12 11:5 p.m.49 views

CVE-2023-44196

CVE-2023-44196 affects Juniper Networks Junos OS Evolved on PTX10003 Series, where the Packet Forwarding Engine improperly checks unusual conditions, allowing an unauthenticated adjacent attacker to impact system integrity when specific transit MPLS packets are processed; this vulnerability is a ...

6.5CVSS5.8AI score0.00241EPSS
CVE
CVE
added 2024/07/11 4:13 p.m.49 views

CVE-2024-39536

CVE-2024-39536 concerns Juniper Networks Junos OS and Junos OS Evolved. A Missing Release of Memory after Effective Lifetime vulnerability in the Periodic Packet Management Daemon (ppmd) allows an unauthenticated adjacent attacker to cause a Denial-of-Service (DoS). The leak is triggered when a B...

6CVSS5.5AI score0.00228EPSS
CVE
CVE
added 2024/10/11 3:30 p.m.49 views

CVE-2024-47498

CVE-2024-47498 affects Junos OS Evolved on QFX5000 Series. The issue is an unimplemented/unsupported feature in the UI of the CLI that, when configured, does not enforce limits on MAC learning/moves, potentially causing control-plane overload and a denial of service for legitimate traffic. The vu...

7.1CVSS6.5AI score0.00321EPSS
CVE
CVE
added 2023/04/17 12:0 a.m.48 views

CVE-2023-28978

The CVE-2023-28978 vulnerability affects Juniper Networks Junos OS Evolved and is caused by insecure default initialization of a resource. An unauthenticated, network-based attacker can read confidential information about locally configured administrative users. Affected releases include Junos OS...

5.3CVSS5.1AI score0.0047EPSS
CVE
CVE
added 2024/10/11 3:18 p.m.47 views

CVE-2024-39544

CVE-2024-39544 concerns an issue in Juniper Networks Junos OS Evolved where NETCONF traceoptions files can be read due to incorrect default permissions in the CLI. The vulnerability affects Junos OS Evolved where NETCONF traceoptions are configured, enabling a low-privileged local user to access ...

5.1CVSS4.8AI score0.00197EPSS
CVE
CVE
added 2023/07/14 5:33 p.m.45 views

CVE-2023-36836

CVE-2023-36836 affects Juniper Networks Junos OS and Junos OS Evolved. A use of an uninitialized resource in the routing protocol daemon (rpd) allows a local, authenticated attacker with low privileges to cause a Denial of Service (DoS). In a Multicast-only Fast Reroute (MoFRR) scenario, executin...

4.7CVSS4.8AI score0.0016EPSS
CVE
CVE
added 2024/07/11 4:14 p.m.45 views

CVE-2024-39537

CVE-2024-39537 affects Juniper Networks Junos OS Evolved on the ACX 7000 Series. Root cause: initialization error allows processes that should be internal to be reachable over the network via open ports, enabling an unauthenticated, network-based attacker to cause limited information disclosure a...

6.9CVSS6.3AI score0.00332EPSS
CVE
CVE
added 2024/10/11 3:27 p.m.45 views

CVE-2024-47495

CVE-2024-47495 – Junos OS Evolved dual-REs : A local authorization bypass via a user-controlled key can allow a locally authenticated attacker with shell access to take full control on devices running Juniper Networks Junos OS Evolved with dual routing engines. Affected are dual-RE deployments on...

8.4CVSS6.6AI score0.00208EPSS
Total number of security vulnerabilities131