Lucene search
K

219 matches found

CVE
CVE
added 2022/07/20 2:15 p.m.906 views

CVE-2022-22215

CVE-2022-22215 describes a Denial of Service in Junos OS and Junos OS Evolved due to a missing release of file descriptors/handles after a gRPC connection ends. The root cause is that /var/run/.env files may not be deleted when a gRPC session terminates, potentially exhausting inodes. Affected pr...

6.5CVSS5.8AI score0.00543EPSS
CVE
CVE
added 2022/03/23 12:50 p.m.872 views

CVE-2021-25220

CVE-2021-25220 affects ISC BIND where cache poisoning can occur when using DNS forwarders, allowing forged NS records to be cached and cause queries to reach the wrong servers or return false information. The Initial CVE data covers BIND versions from 9.11.x (including 9.11.0–9.11.36) and 9.12.x ...

6.8CVSS7AI score0.0325EPSS
CVE
CVE
added 2004/05/05 4:0 a.m.810 views

CVE-2004-0230

Technical details beyond the public description are not provided in the supplied documents. CVE-2004-0230 describes a TCP sequence-number guessing/RST-injection denial-of-service under large window size; no remediation details are given here.

5CVSS9.1AI score0.80855EPSS
CVE
CVE
added 2023/08/17 7:17 p.m.481 views

CVE-2023-36844

CVE-2023-36844 affects Juniper Junos OS on EX Series (J-Web) and enables an unauthenticated, network-based attacker to modify PHP environment variables, potentially causing partial integrity loss and enabling vulnerability chaining. Affected versions include multiple 20.4R3-S9 through 23.2R2 line...

5.3CVSS7.1AI score0.89628EPSS
In wildWeb
CVE
CVE
added 2023/08/17 7:17 p.m.447 views

CVE-2023-36845

CVE-2023-36845 affects Juniper Junos OS J-Web on EX Series and SRX Series. Root cause: PHP external variable modification via PHPRC allows unauthenticated, network-based Remote Code Execution. Affected versions include pre-20.4R3-S9 and multiple 21.x, 22.x, 23.2 branches with various subversions;...

9.8CVSS7.7AI score0.93546EPSS
In wildWeb
CVE
CVE
added 2023/08/17 7:18 p.m.343 views

CVE-2023-36846

CVE-2023-36846 (Juniper Junos OS SRX Series) is a Missing Authentication for Critical Function vulnerability. An unauthenticated, network-based attacker can trigger J-Web to upload arbitrary files, leading to a loss of file-system integrity for a portion of the device. Affected Junos OS/SRX Serie...

5.3CVSS6.2AI score0.94205EPSS
In wildWeb
CVE
CVE
added 2023/08/17 7:16 p.m.327 views

CVE-2023-36847

CVE-2023-36847 affects Juniper Networks Junos OS on EX Series. It is a pre-authentication missing-authentication-for-critical-function vulnerability in J-Web that allows an unauthenticated, network-based attacker to upload arbitrary files, causing limited integrity loss in parts of the file syste...

5.3CVSS6.2AI score0.84692EPSS
In wild
CVE
CVE
added 2022/10/18 2:46 a.m.129 views

CVE-2022-22249

The CVE-2022-22249 issue affects Juniper Networks Junos OS on MX Series, specifically in the Packet Forwarding Engine (PFE). A continuous MAC move can trigger a memory corruption that causes one or more FPCs to crash and reboot, leading to a Denial of Service. Affected versions include all before...

6.5CVSS6.6AI score0.0045EPSS
CVE
CVE
added 2023/10/12 10:56 p.m.124 views

CVE-2023-36839

The CVE-2023-36839 issue affects Juniper Networks Junos OS and Junos OS Evolved. Affected component: Layer-2 control protocols daemon (l2cpd). Root cause: Improper validation of specified quantity in input, triggered by specific LLDP packets from an unauthenticated adjacent attacker, leading to a...

6.5CVSS6.5AI score0.0027EPSS
CVE
CVE
added 2023/10/12 10:58 p.m.124 views

CVE-2023-36843

The CVE-2023-36843 issue affects Junos OS with the jsf module, where receiving malformed SSL traffic can crash the Packet Forwarding Engine (PFE) and cause DoS. Impact is limited to devices with ATP Cloud and Encrypted Traffic Insights enabled. Affected versions include 20.4R3-S8/S9, 21.1R1+, 21....

7.5CVSS7.6AI score0.00547EPSS
CVE
CVE
added 2024/01/12 12:52 a.m.120 views

CVE-2024-21591

CVE-2024-21591 is an out-of-bounds write vulnerability in Juniper Networks Junos OS J-Web affecting SRX Series and EX Series. An unauthenticated, network-based attacker can cause a Denial of Service or Remote Code Execution and obtain root privileges on affected devices. The flaw stems from use o...

9.8CVSS9.7AI score0.17668EPSS
CVE
CVE
added 2024/04/12 2:55 p.m.117 views

CVE-2024-21610

Summary (CVE-2024-21610) : A vulnerability in Juniper Networks Junos OS cosd (Class of Service daemon) on MX Series allows an authenticated, low-privileged attacker to cause a limited DoS by handling specific low-privileged commands (via NETCONF, SSH, or Telnet) on behalf of mgd; mgd processes ca...

5.3CVSS4.5AI score0.00478EPSS
CVE
CVE
added 2023/10/12 10:59 p.m.111 views

CVE-2023-44175

CVE-2023-44175 affects Junos OS and Junos OS Evolved. A Reachable Assertion in the routing protocol daemon (rpd) can be triggered by specific genuine PIM packets, causing rpd to crash and leading to a Denial of Service. The impact is a sustained DoS, with exploitation described as dependent on re...

7.5CVSS6.8AI score0.00515EPSS
CVE
CVE
added 2023/08/31 11:46 p.m.108 views

CVE-2023-4481

CVE-2023-4481 describes an improper input validation in Juniper’s Routing Protocol Daemon (rpd) for Junos OS and Junos OS Evolved. A remote, unauthenticated attacker can cause a DoS by sending crafted BGP UPDATE messages over an existing BGP session; the impact can be sustained as updates are pro...

7.5CVSS7.5AI score0.15143EPSS
CVE
CVE
added 2024/04/16 8:3 p.m.106 views

CVE-2024-30378

This CVE describes a Use After Free in the MX Series bbe-smgd daemon of Junos OS during certain CLI commands, causing the broadband edge service manager to crash and restart (DoS). Affected software: Junos OS on MX Series with GRES and Subscriber Management enabled. Root cause: writing into an mg...

6.9CVSS7AI score0.00179EPSS
CVE
CVE
added 2024/04/12 3:7 p.m.99 views

CVE-2024-30395

CVE-2024-30395 describes an improper validation of a BGP tunnel encapsulation attribute in Junos OS and Junos OS Evolved RPD, leading to an unauthenticated, network-based DoS. A BGP update containing a specifically malformed TLV can cause Routing Protocol Daemon (rpd) to crash and restart. Affect...

8.7CVSS6.8AI score0.00544EPSS
CVE
CVE
added 2024/04/12 3:23 p.m.97 views

CVE-2024-30386

CVE-2024-30386 is a Use-After-Free vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS and Junos OS Evolved. In EVPN-VXLAN deployments, state updates processed by adjacent systems may flow in an unsafe order, causing l2ald to crash and restart, leading to a D...

7.1CVSS6.7AI score0.00267EPSS
CVE
CVE
added 2022/01/19 12:21 a.m.96 views

CVE-2022-22163

CVE-2022-22163 : The Junos OS DHCP daemon (jdhcpd) has an improper input validation vulnerability that enables an adjacent unauthenticated attacker to crash jdhcpd and cause a Denial of Service (DoS) when a device is configured as a DHCPv6 local server with persistent storage enabled, by processi...

7.4CVSS6.6AI score0.00368EPSS
CVE
CVE
added 2024/04/12 2:55 p.m.96 views

CVE-2024-21609

CVE-2024-21609 affects Juniper Networks Junos OS on MX Series with SPC3, and SRX Series. The vulnerability is a missing release of memory after the IPsec SA rekey in the iked process, triggered by crafted IPsec parameter values (local-ip, remote-ip, remote ike-id, traffic selectors), leading to m...

7.1CVSS6.9AI score0.00295EPSS
CVE
CVE
added 2023/10/12 11:0 p.m.95 views

CVE-2023-44176

CVE-2023-44176 is a stack-based buffer overflow in the CLI command processing of Juniper Networks Junos OS. The vulnerability allows a low-privileged attacker to execute specific CLI commands, triggering a Denial of Service with repeated actions potentially sustaining it. Affected Junos OS versio...

5.5CVSS5.8AI score0.00163EPSS
CVE
CVE
added 2024/04/12 3:27 p.m.95 views

CVE-2024-30402

Summary of CVE-2024-30402 (Juniper Junos OS / Junos OS Evolved): The vulnerability stems from an improper check for unusual or exceptional conditions in the Layer 2 Address Learning Daemon (l2ald). When telemetry requests are received and the Dynamic Rendering Daemon (drend) is suspended, l2ald c...

8.2CVSS6.8AI score0.00522EPSS
CVE
CVE
added 2022/04/14 3:50 p.m.91 views

CVE-2022-22186

CVE-2022-22186 describes an Improper Initialization vulnerability in Juniper Networks Junos OS on the EX4650 series. Affected are EX4650 devices with Junos OS versions prior to 19.1R3-S8; 19.2 before 19.2R3-S5; 19.3 before 19.3R3-S5; 19.4 before 19.4R3-S7; 20.1 before 20.1R3-S3; 20.2 before 20.2R...

7.2CVSS6.6AI score0.00619EPSS
CVE
CVE
added 2024/04/12 3:25 p.m.91 views

CVE-2024-30391

CVE-2024-30391 describes a Missing Authentication for Critical Function in Junos OS PFE (MX Series with SPC3 and SRX Series). When IPsec uses hmac-sha-384 or hmac-sha-512, traffic exiting the tunnel is not authenticated and ingress is not expected to be authenticated, which can lead to limited im...

6.3CVSS7.2AI score0.00438EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.90 views

CVE-2022-22241

CVE-2022-22241 (Junos OS J-Web): An improper input validation issue in the J-Web component allows an unauthenticated attacker to deserialize crafted content and gain unauthorized access or execute commands. Affected Junos OS versions include all pre-release/builds before 19.1R3-S9, plus earlier 1...

9.8CVSS9AI score0.01131EPSS
CVE
CVE
added 2024/04/12 2:55 p.m.90 views

CVE-2024-21615

CVE-2024-21615 concerns Juniper Networks Junos OS and Junos OS Evolved. The root cause is an Incorrect Default Privileges condition that, when NETCONF traceoptions are configured, can allow a local, low-privileged user to access confidential information after a super-user performs certain NETCONF...

5.1CVSS6.3AI score0.00152EPSS
CVE
CVE
added 2024/04/12 3:7 p.m.90 views

CVE-2024-30392

CVE-2024-30392 describes a Stack-based Buffer Overflow in Juniper Junos OS Flow Processing Daemon (flowd) on MX platforms with SPC3 and MS-MPC/-MIC. When URL filtering is enabled, receiving a specific URL request can crash flowd and restart the PFE, causing a sustained DoS. Affected Junos OS vers...

8.7CVSS6.8AI score0.00694EPSS
CVE
CVE
added 2024/04/16 8:4 p.m.89 views

CVE-2024-30380

CVE-2024-30380 affects Junos OS and Junos OS Evolved. An adjacent, unauthenticated attacker can trigger a DoS by sending a specific TLV that crashes the l2cpd process, reinitializing STP/RSTP/MSTP/VSTP, MVRP and ERP. Affected versions are: Junos OS: before 20.4R3-S9; 21.2 before 21.2R3-S7; 21.3 b...

7.1CVSS6.8AI score0.00309EPSS
CVE
CVE
added 2024/04/12 3:4 p.m.89 views

CVE-2024-30405

CVE-2024-30405 is an input but not a generic vulnerability; the connected docs confirm an issue in Juniper Networks Junos OS SRX 5000 Series with SPC2 line cards when ALGs are enabled. The root cause is an incorrect calculation of the buffer size in the ALG module, which lets an attacker send spe...

8.7CVSS6.8AI score0.0063EPSS
CVE
CVE
added 2021/10/19 6:16 p.m.88 views

CVE-2021-31368

CVE-2021-31368 (Juniper JUNOS OS) affects EX2300, EX3400, and ACX710 devices. An unauthenticated network attacker can cause 100% CPU load and a DoS by flooding the out-of-band management port, leading to the device becoming unresponsive; system recovery occurs after the flood stops. The vulnerabi...

7.8CVSS7.4AI score0.01049EPSS
CVE
CVE
added 2023/10/11 8:8 p.m.87 views

CVE-2023-44186

CVE-2023-44186 concerns Juniper Networks Junos OS and Junos OS Evolved. The issue is an Improper Handling of Exceptional Conditions in AS PATH processing that allows a BGP update with a very long AS PATH of 4-byte ASes to trigger a Denial of Service when NSR is enabled and advertising to a non-4-...

7.5CVSS7.4AI score0.00538EPSS
CVE
CVE
added 2025/04/09 7:52 p.m.86 views

CVE-2025-30644

CVE-2025-30644 is a heap-based buffer overflow in the FPC of Juniper Junos OS on EX2300/EX3400/EX4100/EX4300/EX4300MP/EX4400/EX4600/EX4650-48Y and QFX5k. The issue allows an attacker to send a specific DHCP packet (DHCP Option 82 scenario can trigger memory corruption) that crashes the FPC and re...

7.7CVSS8AI score0.00288EPSS
CVE
CVE
added 2025/04/09 7:53 p.m.86 views

CVE-2025-30647

CVE-2025-30647 affects Junos OS on Juniper MX Series. A memory leak in the packet forwarding engine (PFE) during subscriber management (login/logout) can progressively exhaust memory, enabling an unauthenticated adjacent attacker to cause a Denial-of-Service. Affected versions are: before 21.2R3-...

7.1CVSS6.5AI score0.00219EPSS
CVE
CVE
added 2025/04/09 8:1 p.m.86 views

CVE-2025-30656

CVE-2025-30656 describes an Improper Handling of Additional Special Element vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on MX Series (MS-MPC, MS-MIC, SPC3) and SRX Series. The issue can allow an unauthenticated, network-based attacker to cause a sustained Deni...

8.7CVSS7.7AI score0.00372EPSS
CVE
CVE
added 2024/04/12 3:2 p.m.85 views

CVE-2024-30410

CVE-2024-30410 affects Juniper Networks Junos OS on EX4300 Series. Root cause: an incorrect behavior order in the routing engine causes traffic intended for the device to reach the routing engine (RE) instead of being discarded when a drop/discard term is configured on the loopback (lo0) interfac...

6.9CVSS6.8AI score0.00363EPSS
CVE
CVE
added 2022/04/14 3:50 p.m.84 views

CVE-2022-22191

CVE-2022-22191 describes a DoS in Juniper Junos OS on EX4300 switches caused by processing a flood of specific ARP traffic from the local broadcast domain. The vulnerability allows an unauthenticated network-adjacent attacker to trigger a PFEMAN watchdog timeout, causing the Packet Forwarding Eng...

6.5CVSS6.4AI score0.00354EPSS
CVE
CVE
added 2022/04/14 3:50 p.m.84 views

CVE-2022-22197

The CVE describes an Operation on a Resource after Expiration or Release vulnerability in Juniper Networks Junos OS and Junos OS Evolved’s Routing Protocol Daemon (rpd). An unauthenticated attacker with an established BGP session can cause a Denial of Service when proxy-generate route-target filt...

7.5CVSS7.5AI score0.01072EPSS
CVE
CVE
added 2024/01/25 10:50 p.m.84 views

CVE-2024-21620

Summary: CVE-2024-21620 is a cross-site scripting flaw in Juniper Networks Junos OS J-Web (SRX Series and EX Series). An improper neutralization of input during web page generation allows an attacker to craft a URL that, when visited by a user, can execute commands with the target’s permissions (...

8.8CVSS7.1AI score0.00908EPSS
In wild
CVE
CVE
added 2025/04/09 7:55 p.m.84 views

CVE-2025-30649

CVE-2025-30649 concerns a Junos OS Improper Input Validation in the syslog stream TCP transport on MX240/MX480/MX960 with MX-SPC3. An unauthenticated network attacker can send specific spoofed packets to cause a CPU Denial of Service on MX-SPC3 SPUs, with continued receipt sustaining the DoS. Aff...

8.7CVSS7.6AI score0.00372EPSS
CVE
CVE
added 2023/01/12 12:0 a.m.83 views

CVE-2023-22403

CVE-2023-22403 affects Juniper Networks Junos OS on QFX10K Series. The issue is an Allocation of Resources Without Limits or Throttling in the Packet Forwarding Engine (PFE) that allows a network-based, unauthenticated attacker to trigger a Denial of Service (DoS). In MC-LAG topologies using ICCP...

7.5CVSS7.5AI score0.00644EPSS
CVE
CVE
added 2022/04/14 3:50 p.m.80 views

CVE-2022-22181

CVE-2022-22181 is a reflected XSS in Juniper Junos OS J-Web. Affected: Junos OS versions prior to 18.3R3-S5; 18.4 before 18.4R3-S9; 19.1 before 19.1R3-S6; 19.2 before 19.2R3-S3; 19.3 before 19.3R2-S6, 19.3R3-S3; 19.4 before 19.4R3-S5; 20.1 before 20.1R3-S4; 20.2 before 20.2R3-S2; 20.3 before 20.3...

8CVSS5.7AI score0.00658EPSS
CVE
CVE
added 2025/02/05 3:31 p.m.80 views

CVE-2024-39564

CVE-2024-39564 describes a double-free vulnerability in Juniper’s routing process daemon (rpd) for Junos OS and Junos OS Evolved. A malformed BGP Path attribute update can trigger a memory double-free in the rpd log path, causing the process to crash and resulting in a Denial of Service. Affected...

8.7CVSS6.8AI score0.00404EPSS
CVE
CVE
added 2025/04/09 8:2 p.m.80 views

CVE-2025-30657

CVE-2025-30657 affects Juniper Networks Junos OS SRRD. A specific BGP update triggers improper encoding/escaping when SRRD processes data forwarded from the routing protocol daemon (rpd), causing a crash and a momentary DoS in jflow processing. The impact is a network-borne DoS with no traffic-fo...

6.9CVSS7AI score0.00355EPSS
CVE
CVE
added 2024/07/11 4:30 p.m.79 views

CVE-2024-39552

CVE-2024-39552 affects Juniper Networks Junos OS and Junos OS Evolved: the RPD (routing protocol daemon) crashes when a malformed BGP UPDATE is received over an established BGP session, causing DoS. A network-based, unauthenticated attacker can trigger the crash via IPv4/IPv6 eBGP/iBGP traffic; i...

8.7CVSS7.6AI score0.00593EPSS
CVE
CVE
added 2025/04/09 7:56 p.m.79 views

CVE-2025-30651

CVE-2025-30651 affects Juniper Networks Junos OS and Junos OS Evolved. A Buffer Access with Incorrect Length Value in the routing protocol daemon (rpd) can be triggered by a specific ICMPv6 packet to an interface configured with protocol router-advertisement, causing rpd to crash and restart and ...

8.7CVSS7.6AI score0.00372EPSS
CVE
CVE
added 2021/10/19 6:17 p.m.77 views

CVE-2021-31369

CVE-2021-31369 affects Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC. The issue is an Allocation of Resources Without Limits or Throttling vulnerability that allows an unauthenticated network attacker to cause a partial Denial of Service by generating high-rate traffic. If a Class of ...

5.3CVSS5.1AI score0.00943EPSS
CVE
CVE
added 2024/04/12 3:20 p.m.77 views

CVE-2024-30387

CVE-2024-30387 describes a Missing Synchronization vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on ACX5448 and ACX710. When an interface flaps while the system gathers statistics, two processes access a shared resource concurrently, causing a PFE crash and rest...

7.1CVSS6.7AI score0.00209EPSS
CVE
CVE
added 2022/01/19 12:20 a.m.76 views

CVE-2022-22153

CVE-2022-22153 affects Junos OS flowd on SRX Series and MX Series with SPC3. A high-rate fragmented-traffic condition (fragmented packets > ~5%) can cause latency or packet loss due to insufficient algorithmic complexity and unthrottled resource allocation. Affected versions are prior to 18.2R...

7.5CVSS7.5AI score0.0093EPSS
CVE
CVE
added 2025/04/09 7:52 p.m.76 views

CVE-2025-30645

The CVE describes a NULL-pointer dereference in the flowd daemon of Juniper Networks Junos OS on SRX Series. When specific, valid DS-Lite control traffic is sent, flowd can crash (segmentation fault), causing a DoS/network outage until flowd restarts. Affected are Junos OS on SRX Series: all vers...

8.7CVSS6.9AI score0.00372EPSS
CVE
CVE
added 2025/04/09 8:5 p.m.76 views

CVE-2025-30660

CVE-2025-30660 affects Junos OS on Juniper MX Series with the Packet Forwarding Engine (pfe). The issue stems from an improper check for unusual conditions and can allow an unauthenticated, network-based attacker to trigger a DoS by processing a high rate of specific GRE traffic, causing the PFE ...

8.7CVSS6.9AI score0.00372EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.75 views

CVE-2022-22220

The CVE-2022-22220 issue is a TOCTOU race condition in Juniper Junos OS/rpd that can crash the process when a BGP flow route with a redirect IP is received while the next-hop reachability is flapping, enabling a network-based DoS. Affected software includes Junos OS and Junos OS Evolved across li...

5.9CVSS5.7AI score0.00444EPSS
Total number of security vulnerabilities219