131 matches found
CVE-2024-39517
The CVE-2024-39517 issue affects Juniper Networks Junos OS and Junos OS Evolved, specifically the Layer 2 Address Learning Daemon (l2ald). In EVPN/VXLAN deployments, processing a high volume of certain Layer 2 packets can cause the Routing Protocol Daemon (rpd) to consume all CPU resources, leadi...
CVE-2023-22397
CVE-2023-22397 affects Juniper Networks Junos OS Evolved on PTX10003. The issue is an Allocation of Resources Without Limits or Throttling in the Packet Forwarding Engine (PFE) memory management, enabling an adjacent attacker to trigger a Time-of-check Time-of-use (TOCTOU) race that causes a memo...
CVE-2023-44197
CVE-2023-44197 describes an Out-of-Bounds Write in Juniper’s Routing Protocol Daemon (rpd) that allows an unauthenticated, network-based attacker to cause a DoS by crashing the rpd while processing BGP route updates. Affected products are Junos OS and Junos OS Evolved. Supported versions include:...
CVE-2024-39525
CVE-2024-39525 affects Juniper Networks Junos OS and Junos OS Evolved. The issue is an improper handling of exceptional conditions in the routing protocol daemon (rpd) that can be triggered by an unauthenticated network-based attacker sending a crafted BGP packet, causing rpd to crash and restart...
CVE-2024-39548
CVE-2024-39548 describes an Uncontrolled Resource Consumption vulnerability in the aftmand process of Juniper Networks Junos OS Evolved. An unauthenticated, network-based attacker can cause memory consumption leading to a Denial of Service; affected systems do not recover automatically and requir...
CVE-2024-39559
Junos OS Evolved vulnerability CVE-2024-39559 affects dual RE systems with NSR enabled. An unauthenticated network attacker can crash the device (vmcore) by sending a specific TCP packet over an established session using MD5 authentication (e.g., BGP with MD5). The issue stems from an improper ch...
CVE-2025-30646
CVE-2025-30646 affects Junos OS and Junos OS Evolved. A Signed to Unsigned Conversion Error in the Layer 2 Control Protocol daemon (l2cpd) allows an unauthenticated adjacent attacker to cause the l2cpd process to crash and restart by sending a specially formed LLDP TLV, yielding a Denial of Servi...
CVE-2023-44189
CVE-2023-44189 affects Juniper Networks Junos OS Evolved on PTX10003 Series. The issue is an Origin Validation vulnerability in MAC address validation that lets a network-adjacent attacker bypass MAC checks, causing MACs not intended for the adjacent LAN to be forwarded to the downstream network,...
CVE-2023-44190
CVE-2023-44190 concerns an Origin Validation vulnerability in MAC address validation on Juniper Networks Junos OS Evolved for PTX10001/PTX10004/PTX10008/PTX10016. The root cause is bypass of MAC address checking, allowing a network-adjacent attacker to forward MAC addresses not intended for the a...
CVE-2026-33799
CVE-2026-33799 describes an Out-of-bounds Write in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved. An authenticated remote attacker can send specific valid SNMPv3 queries to trigger a memory leak, causing snmpd memory exhaustion over time, a resulting process crash, and...
CVE-2022-22238
The vulnerability CVE-2022-22238 affects Juniper Networks Junos OS and Junos OS Evolved. An unauthenticated, adjacent attacker can trigger a Denial of Service by sending a malformed RESV message for a protected LSP, causing an incorrect internal state and an rpd core. Affected are Junos OS and Ju...
CVE-2024-39523
CVE-2024-39523 is a local, authenticated-then-privilege-escalation issue in Juniper Networks Junos OS Evolved CLI handling of command options. A crafted parameter set can escalate to root on the shell, resulting in full compromise. Affected: Junos OS Evolved versions before 20.4R3-S7-EVO; 21.2-EV...
CVE-2022-22239
Vulnerability summary: An Execution with Unnecessary Privileges in the Management Daemon (mgd) of Juniper Networks Junos OS Evolved allows a locally authenticated attacker with low privileges to escalate to root on the device, and potentially to remote systems with user interaction on the local d...
CVE-2023-44184
The CVE-2023-44184 issue affects Juniper Networks Junos OS and Junos OS Evolved in the mgd (management daemon) component. A memory-buffer bound check violation allows a network-based, authenticated, low-privileged attacker to execute a specific NETCONF command that can cause CPU denial of service...
CVE-2023-44187
The CVE affects Juniper Junos OS Evolved: the 'file copy' CLI command can disclose passwords entered on the command line to a local attacker with shell access. Affected versions require upgrading to fixed releases: 20.4R3-S7-EVO or later; 21.1R1-EVO to 21.2R3-S5-EVO or later; 21.2R3-S5-EVO or lat...
CVE-2024-39524
The CVE concerns Juniper Networks Junos OS Evolved CLI: an Improper Neutralization of Special Elements in CLI command option handling allows a local, authenticated user with LOW privileges to escalate to root, potentially compromising the entire system. Affected versions are: all before 20.4R3-S7...
CVE-2024-39562
Junos OS Evolved is affected by CVE-2024-39562 due to a Missing Release of Resource after Effective Lifetime in the xinetd process, which can crash and leave defunct sshd processes under high concurrent SSH load. This denial-of-service blocks SSH access and dependent SSH services (SFTP, Netconf o...
CVE-2020-1620
CVE-2020-1620 : A local, authenticated user can obtain hashed login passwords via the configd streamer log in Juniper Networks Junos OS Evolved before version 19.3R1. Affected component: configd streamer log. Root cause: disclosure of password hashes through log output. Impact: confidential data ...
CVE-2024-39513
CVE-2024-39513 maps to a local, low-privilege DoS in Juniper Networks Junos OS Evolved due to an Improper Input Validation in the Packet Forwarding Engine (PFE). The vulnerability is triggered by a specific CLI command; when executed, the Advanced Forwarding Toolkit (evo-aftmand-bt/zx) crashes an...
CVE-2020-1621
CVE-2020-1621 affects Juniper Networks Junos OS Evolved prior to 19.3R1. A local, authenticated user with shell can obtain the hashed values of login passwords via configd traces, indicating a confidentiality impact through leakage of credentials. The vulnerability originates from exposed log/tra...
CVE-2023-28964
CVE-2023-28964 affects Juniper Networks Junos OS and Junos OS Evolved. The vulnerability arises from an improper handling of a length parameter in the routing protocol daemon (RPD) that processes BGP flowspec updates. A network-based, unauthenticated attacker can send malformed BGP flowspec data ...
CVE-2023-44178
CVE-2023-44178 describes a stack-based buffer overflow in the CLI command processing of Juniper Networks Junos OS. A low-privilege attacker can trigger the overflow by executing specific CLI commands, resulting in a Denial of Service (DoS); repeated actions cause a sustained DoS. Affected Junos O...
CVE-2024-39538
Junos OS Evolved on ACX7000 Series is affected by CVE-2024-39538 due to a Buffer Copy without Checking Size of Input in evo-pfemand (PFE management daemon). An unauthenticated, adjacent attacker can cause a Denial-of-Service by sending multicast traffic with a specific (S,G); evo-pfemand crashes,...
CVE-2024-39531
The CVE-2024-39531 entry affects Junos OS Evolved on ACX 7000 Series. The vulnerability lies in the Packet Forwarding Engine (PFE) where configuring DDoS bandwidth or burst parameters for any protocol in a queue causes all protocols sharing that queue to adopt the new value. This can inadvertentl...
CVE-2024-39560
Juniper Junos OS and Junos OS Evolved are affected by CVE-2024-39560 via the routing protocol daemon (rpd). The issue is an improper handling of exceptional conditions that lets a logically adjacent downstream RSVP neighbor induce kernel memory exhaustion and a DoS. Affected ranges include multip...
CVE-2025-21595
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS and Junos OS Evolved can cause an FPC crash and DoS. In EVPN-VXLAN, receiving specific ARP (IPv4) or NDP (IPv6) packets triggers kernel heap memory leaks and event...
CVE-2023-36840
Summary (CVE-2023-36840) A reachable-assertion vulnerability in Juniper’s Routing Protocol Daemon (RPD) on Junos OS and Junos OS Evolved can be exploited by a locally authenticated, low-privilege user when running a specific L2VPN command to cause a DoS (RPD crash/restart). Affected products/vers...
CVE-2024-39555
Summary of vulnerability (CVE-2024-39555): Juniper Networks Junos OS and Junos OS Evolved RPD mishandles certain malformed BGP Update messages when segment routing is enabled, causing session resets and potential DoS. A remote attacker must have at least one established BGP session; affected are ...
CVE-2024-47489
CVE-2024-47489 (Junos OS Evolved, ACX Series) is a vulnerability in the Packet Forwarding Engine (pfe) where the Routing Engine’s handling of specific transit protocol packets can fill the shared DDoS protection queue, causing protocol flaps and partial DoS of downstream devices. It affects IPv4 ...
CVE-2023-28973
CVE-2023-28973 is an improper authorization vulnerability in Juniper Networks Junos OS Evolved, exposing the local sysmanctl shell command to authenticated users who can run administrative actions (daemon restart, RE switchover, node shutdown). Affected products/versions include Junos OS Evolved ...
CVE-2024-47505
CVE-2024-47505 concerns Juniper Networks Junos OS Evolved, affecting the PFE management daemon evo-pfemand. The vulnerability is a GUID resource leak (allocation of resources without limits/throttling) that occurs when specific SNMP GET operations or low-privilege CLI commands are run. This can e...
CVE-2020-1624
CVE-2020-1624 affects Junos OS Evolved prior to 19.1R1. A local, authenticated user can access raw objmon configuration files and obtain hashed values of login passwords and shared secrets, leaking sensitive information. The impact is confined to confidentiality of credentials via object monitori...
CVE-2024-47491
Summary: CVE-2024-47491 affects Juniper Networks Junos OS and Junos OS Evolved. A network-based, unauthenticated attacker can cause a DoS by sending a BGP UPDATE with a malformed path attribute to an established BGP session; the Routing Protocol Daemon (rpd) crashes and restarts, potentially lead...
CVE-2024-47502
CVE-2024-47502 affects Juniper Networks Junos OS Evolved. The issue is an Allocation of Resources Without Limits or Throttling in the kernel that can allow an unauthenticated, network-based attacker to trigger a DoS. In IPv4-only scenarios, TCP sessions terminated on the Routing Engine may not ha...
CVE-2024-47509
The CVE covers an Allocation of Resources Without Limits or Throttling in Junos OS Evolved’s PFE management daemon evo-pfemand, causing a GUID resource leak that exhausts GUID space and can hang FPCs (DoS) when certain SNMP GETs or low-privileged CLI commands are used. Affected Junos OS Evolved r...
CVE-2022-22240
CVE-2022-22240 affects Juniper Networks Junos OS and Junos OS Evolved. The vulnerability is an rpd memory issue caused by Allocation of Resources Without Limits or Throttling and a Missing Release of Memory after Effective Lifetime, leading to a potential Denial of Service when running a specific...
CVE-2024-47507
CVE-2024-47507 affects Junos OS and Junos OS Evolved. The issue is in the routing protocol daemon (rpd): when a BGP update carries an aggregator attribute with an ASN value of zero, rpd accepts and propagates it, causing potential integrity impacts on downstream peers. Affected versions include: ...
CVE-2024-47508
This CVE refers to an Allocation of Resources Without Limits or Throttling in Juniper Junos OS Evolved, affecting evo-pfemand (PFE management daemon). The vulnerability arises from a GUID resource leak when specific SNMP GETs or low-privilege CLI commands are used, leading to exhaustion, FPC hang...
CVE-2020-1622
Junos OS Evolved is affected. A local, authenticated user can access the EvoSharedObjStore and obtain hashed login passwords and shared secrets, leaking confidential data. Affected versions are all prior to 19.1R1; remediation is to upgrade to 19.1R1 or later. Exploitation status is not detailed ...
CVE-2020-1623
CVE-2020-1623 affects Junos OS Evolved prior to 19.2R1. A local, authenticated user can view sensitive information from the ev.ops configuration file, leaking data with partial confidentiality impact (per CVSS v2) and high confidentiality impact (per CVSS v3.1). Exploitation details are not provi...
CVE-2024-47490
The CVE-2024-47490 issue affects Junos OS Evolved ACX 7000 Series. Affected are all versions before: 21.4R3-S9-EVO, 22.2-EVO before 22.2R3-S4-EVO, 22.3-EVO before 22.3R3-S3-EVO, 22.4-EVO before 22.4R3-S2-EVO, 23.2-EVO before 23.2R2-EVO, and 23.4-EVO before 23.4R1-S1-EVO / 23.4R2-EVO. The vulnerab...
CVE-2023-28966
CVE-2023-28966 describes an "Incorrect Default Permissions" vulnerability in Juniper Networks Junos OS Evolved. The root cause is improper file and directory permissions on certain system files, enabling a local, low-privileged attacker with shell access to inject CLI commands or modify files as ...
CVE-2023-44196
CVE-2023-44196 affects Juniper Networks Junos OS Evolved on PTX10003 Series, where the Packet Forwarding Engine improperly checks unusual conditions, allowing an unauthenticated adjacent attacker to impact system integrity when specific transit MPLS packets are processed; this vulnerability is a ...
CVE-2024-39536
CVE-2024-39536 concerns Juniper Networks Junos OS and Junos OS Evolved. A Missing Release of Memory after Effective Lifetime vulnerability in the Periodic Packet Management Daemon (ppmd) allows an unauthenticated adjacent attacker to cause a Denial-of-Service (DoS). The leak is triggered when a B...
CVE-2024-47498
CVE-2024-47498 affects Junos OS Evolved on QFX5000 Series. The issue is an unimplemented/unsupported feature in the UI of the CLI that, when configured, does not enforce limits on MAC learning/moves, potentially causing control-plane overload and a denial of service for legitimate traffic. The vu...
CVE-2023-28978
The CVE-2023-28978 vulnerability affects Juniper Networks Junos OS Evolved and is caused by insecure default initialization of a resource. An unauthenticated, network-based attacker can read confidential information about locally configured administrative users. Affected releases include Junos OS...
CVE-2024-39544
CVE-2024-39544 concerns an issue in Juniper Networks Junos OS Evolved where NETCONF traceoptions files can be read due to incorrect default permissions in the CLI. The vulnerability affects Junos OS Evolved where NETCONF traceoptions are configured, enabling a low-privileged local user to access ...
CVE-2023-36836
CVE-2023-36836 affects Juniper Networks Junos OS and Junos OS Evolved. A use of an uninitialized resource in the routing protocol daemon (rpd) allows a local, authenticated attacker with low privileges to cause a Denial of Service (DoS). In a Multicast-only Fast Reroute (MoFRR) scenario, executin...
CVE-2024-39537
CVE-2024-39537 affects Juniper Networks Junos OS Evolved on the ACX 7000 Series. Root cause: initialization error allows processes that should be internal to be reachable over the network via open ports, enabling an unauthenticated, network-based attacker to cause limited information disclosure a...
CVE-2024-47495
CVE-2024-47495 – Junos OS Evolved dual-REs : A local authorization bypass via a user-controlled key can allow a locally authenticated attacker with shell access to take full control on devices running Juniper Networks Junos OS Evolved with dual routing engines. Affected are dual-RE deployments on...