219 matches found
CVE-2022-22215
CVE-2022-22215 describes a Denial of Service in Junos OS and Junos OS Evolved due to a missing release of file descriptors/handles after a gRPC connection ends. The root cause is that /var/run/.env files may not be deleted when a gRPC session terminates, potentially exhausting inodes. Affected pr...
CVE-2021-25220
CVE-2021-25220 affects ISC BIND where cache poisoning can occur when using DNS forwarders, allowing forged NS records to be cached and cause queries to reach the wrong servers or return false information. The Initial CVE data covers BIND versions from 9.11.x (including 9.11.0–9.11.36) and 9.12.x ...
CVE-2004-0230
Technical details beyond the public description are not provided in the supplied documents. CVE-2004-0230 describes a TCP sequence-number guessing/RST-injection denial-of-service under large window size; no remediation details are given here.
CVE-2023-36844
CVE-2023-36844 affects Juniper Junos OS on EX Series (J-Web) and enables an unauthenticated, network-based attacker to modify PHP environment variables, potentially causing partial integrity loss and enabling vulnerability chaining. Affected versions include multiple 20.4R3-S9 through 23.2R2 line...
CVE-2023-36845
CVE-2023-36845 affects Juniper Junos OS J-Web on EX Series and SRX Series. Root cause: PHP external variable modification via PHPRC allows unauthenticated, network-based Remote Code Execution. Affected versions include pre-20.4R3-S9 and multiple 21.x, 22.x, 23.2 branches with various subversions;...
CVE-2023-36846
CVE-2023-36846 (Juniper Junos OS SRX Series) is a Missing Authentication for Critical Function vulnerability. An unauthenticated, network-based attacker can trigger J-Web to upload arbitrary files, leading to a loss of file-system integrity for a portion of the device. Affected Junos OS/SRX Serie...
CVE-2023-36847
CVE-2023-36847 affects Juniper Networks Junos OS on EX Series. It is a pre-authentication missing-authentication-for-critical-function vulnerability in J-Web that allows an unauthenticated, network-based attacker to upload arbitrary files, causing limited integrity loss in parts of the file syste...
CVE-2022-22249
The CVE-2022-22249 issue affects Juniper Networks Junos OS on MX Series, specifically in the Packet Forwarding Engine (PFE). A continuous MAC move can trigger a memory corruption that causes one or more FPCs to crash and reboot, leading to a Denial of Service. Affected versions include all before...
CVE-2023-36839
The CVE-2023-36839 issue affects Juniper Networks Junos OS and Junos OS Evolved. Affected component: Layer-2 control protocols daemon (l2cpd). Root cause: Improper validation of specified quantity in input, triggered by specific LLDP packets from an unauthenticated adjacent attacker, leading to a...
CVE-2023-36843
The CVE-2023-36843 issue affects Junos OS with the jsf module, where receiving malformed SSL traffic can crash the Packet Forwarding Engine (PFE) and cause DoS. Impact is limited to devices with ATP Cloud and Encrypted Traffic Insights enabled. Affected versions include 20.4R3-S8/S9, 21.1R1+, 21....
CVE-2024-21591
CVE-2024-21591 is an out-of-bounds write vulnerability in Juniper Networks Junos OS J-Web affecting SRX Series and EX Series. An unauthenticated, network-based attacker can cause a Denial of Service or Remote Code Execution and obtain root privileges on affected devices. The flaw stems from use o...
CVE-2024-21610
Summary (CVE-2024-21610) : A vulnerability in Juniper Networks Junos OS cosd (Class of Service daemon) on MX Series allows an authenticated, low-privileged attacker to cause a limited DoS by handling specific low-privileged commands (via NETCONF, SSH, or Telnet) on behalf of mgd; mgd processes ca...
CVE-2023-44175
CVE-2023-44175 affects Junos OS and Junos OS Evolved. A Reachable Assertion in the routing protocol daemon (rpd) can be triggered by specific genuine PIM packets, causing rpd to crash and leading to a Denial of Service. The impact is a sustained DoS, with exploitation described as dependent on re...
CVE-2023-4481
CVE-2023-4481 describes an improper input validation in Juniper’s Routing Protocol Daemon (rpd) for Junos OS and Junos OS Evolved. A remote, unauthenticated attacker can cause a DoS by sending crafted BGP UPDATE messages over an existing BGP session; the impact can be sustained as updates are pro...
CVE-2024-30378
This CVE describes a Use After Free in the MX Series bbe-smgd daemon of Junos OS during certain CLI commands, causing the broadband edge service manager to crash and restart (DoS). Affected software: Junos OS on MX Series with GRES and Subscriber Management enabled. Root cause: writing into an mg...
CVE-2024-30395
CVE-2024-30395 describes an improper validation of a BGP tunnel encapsulation attribute in Junos OS and Junos OS Evolved RPD, leading to an unauthenticated, network-based DoS. A BGP update containing a specifically malformed TLV can cause Routing Protocol Daemon (rpd) to crash and restart. Affect...
CVE-2024-30386
CVE-2024-30386 is a Use-After-Free vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS and Junos OS Evolved. In EVPN-VXLAN deployments, state updates processed by adjacent systems may flow in an unsafe order, causing l2ald to crash and restart, leading to a D...
CVE-2022-22163
CVE-2022-22163 : The Junos OS DHCP daemon (jdhcpd) has an improper input validation vulnerability that enables an adjacent unauthenticated attacker to crash jdhcpd and cause a Denial of Service (DoS) when a device is configured as a DHCPv6 local server with persistent storage enabled, by processi...
CVE-2024-21609
CVE-2024-21609 affects Juniper Networks Junos OS on MX Series with SPC3, and SRX Series. The vulnerability is a missing release of memory after the IPsec SA rekey in the iked process, triggered by crafted IPsec parameter values (local-ip, remote-ip, remote ike-id, traffic selectors), leading to m...
CVE-2023-44176
CVE-2023-44176 is a stack-based buffer overflow in the CLI command processing of Juniper Networks Junos OS. The vulnerability allows a low-privileged attacker to execute specific CLI commands, triggering a Denial of Service with repeated actions potentially sustaining it. Affected Junos OS versio...
CVE-2024-30402
Summary of CVE-2024-30402 (Juniper Junos OS / Junos OS Evolved): The vulnerability stems from an improper check for unusual or exceptional conditions in the Layer 2 Address Learning Daemon (l2ald). When telemetry requests are received and the Dynamic Rendering Daemon (drend) is suspended, l2ald c...
CVE-2022-22186
CVE-2022-22186 describes an Improper Initialization vulnerability in Juniper Networks Junos OS on the EX4650 series. Affected are EX4650 devices with Junos OS versions prior to 19.1R3-S8; 19.2 before 19.2R3-S5; 19.3 before 19.3R3-S5; 19.4 before 19.4R3-S7; 20.1 before 20.1R3-S3; 20.2 before 20.2R...
CVE-2024-30391
CVE-2024-30391 describes a Missing Authentication for Critical Function in Junos OS PFE (MX Series with SPC3 and SRX Series). When IPsec uses hmac-sha-384 or hmac-sha-512, traffic exiting the tunnel is not authenticated and ingress is not expected to be authenticated, which can lead to limited im...
CVE-2022-22241
CVE-2022-22241 (Junos OS J-Web): An improper input validation issue in the J-Web component allows an unauthenticated attacker to deserialize crafted content and gain unauthorized access or execute commands. Affected Junos OS versions include all pre-release/builds before 19.1R3-S9, plus earlier 1...
CVE-2024-21615
CVE-2024-21615 concerns Juniper Networks Junos OS and Junos OS Evolved. The root cause is an Incorrect Default Privileges condition that, when NETCONF traceoptions are configured, can allow a local, low-privileged user to access confidential information after a super-user performs certain NETCONF...
CVE-2024-30392
CVE-2024-30392 describes a Stack-based Buffer Overflow in Juniper Junos OS Flow Processing Daemon (flowd) on MX platforms with SPC3 and MS-MPC/-MIC. When URL filtering is enabled, receiving a specific URL request can crash flowd and restart the PFE, causing a sustained DoS. Affected Junos OS vers...
CVE-2024-30380
CVE-2024-30380 affects Junos OS and Junos OS Evolved. An adjacent, unauthenticated attacker can trigger a DoS by sending a specific TLV that crashes the l2cpd process, reinitializing STP/RSTP/MSTP/VSTP, MVRP and ERP. Affected versions are: Junos OS: before 20.4R3-S9; 21.2 before 21.2R3-S7; 21.3 b...
CVE-2024-30405
CVE-2024-30405 is an input but not a generic vulnerability; the connected docs confirm an issue in Juniper Networks Junos OS SRX 5000 Series with SPC2 line cards when ALGs are enabled. The root cause is an incorrect calculation of the buffer size in the ALG module, which lets an attacker send spe...
CVE-2021-31368
CVE-2021-31368 (Juniper JUNOS OS) affects EX2300, EX3400, and ACX710 devices. An unauthenticated network attacker can cause 100% CPU load and a DoS by flooding the out-of-band management port, leading to the device becoming unresponsive; system recovery occurs after the flood stops. The vulnerabi...
CVE-2023-44186
CVE-2023-44186 concerns Juniper Networks Junos OS and Junos OS Evolved. The issue is an Improper Handling of Exceptional Conditions in AS PATH processing that allows a BGP update with a very long AS PATH of 4-byte ASes to trigger a Denial of Service when NSR is enabled and advertising to a non-4-...
CVE-2025-30644
CVE-2025-30644 is a heap-based buffer overflow in the FPC of Juniper Junos OS on EX2300/EX3400/EX4100/EX4300/EX4300MP/EX4400/EX4600/EX4650-48Y and QFX5k. The issue allows an attacker to send a specific DHCP packet (DHCP Option 82 scenario can trigger memory corruption) that crashes the FPC and re...
CVE-2025-30647
CVE-2025-30647 affects Junos OS on Juniper MX Series. A memory leak in the packet forwarding engine (PFE) during subscriber management (login/logout) can progressively exhaust memory, enabling an unauthenticated adjacent attacker to cause a Denial-of-Service. Affected versions are: before 21.2R3-...
CVE-2025-30656
CVE-2025-30656 describes an Improper Handling of Additional Special Element vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on MX Series (MS-MPC, MS-MIC, SPC3) and SRX Series. The issue can allow an unauthenticated, network-based attacker to cause a sustained Deni...
CVE-2024-30410
CVE-2024-30410 affects Juniper Networks Junos OS on EX4300 Series. Root cause: an incorrect behavior order in the routing engine causes traffic intended for the device to reach the routing engine (RE) instead of being discarded when a drop/discard term is configured on the loopback (lo0) interfac...
CVE-2022-22191
CVE-2022-22191 describes a DoS in Juniper Junos OS on EX4300 switches caused by processing a flood of specific ARP traffic from the local broadcast domain. The vulnerability allows an unauthenticated network-adjacent attacker to trigger a PFEMAN watchdog timeout, causing the Packet Forwarding Eng...
CVE-2022-22197
The CVE describes an Operation on a Resource after Expiration or Release vulnerability in Juniper Networks Junos OS and Junos OS Evolved’s Routing Protocol Daemon (rpd). An unauthenticated attacker with an established BGP session can cause a Denial of Service when proxy-generate route-target filt...
CVE-2024-21620
Summary: CVE-2024-21620 is a cross-site scripting flaw in Juniper Networks Junos OS J-Web (SRX Series and EX Series). An improper neutralization of input during web page generation allows an attacker to craft a URL that, when visited by a user, can execute commands with the target’s permissions (...
CVE-2025-30649
CVE-2025-30649 concerns a Junos OS Improper Input Validation in the syslog stream TCP transport on MX240/MX480/MX960 with MX-SPC3. An unauthenticated network attacker can send specific spoofed packets to cause a CPU Denial of Service on MX-SPC3 SPUs, with continued receipt sustaining the DoS. Aff...
CVE-2023-22403
CVE-2023-22403 affects Juniper Networks Junos OS on QFX10K Series. The issue is an Allocation of Resources Without Limits or Throttling in the Packet Forwarding Engine (PFE) that allows a network-based, unauthenticated attacker to trigger a Denial of Service (DoS). In MC-LAG topologies using ICCP...
CVE-2022-22181
CVE-2022-22181 is a reflected XSS in Juniper Junos OS J-Web. Affected: Junos OS versions prior to 18.3R3-S5; 18.4 before 18.4R3-S9; 19.1 before 19.1R3-S6; 19.2 before 19.2R3-S3; 19.3 before 19.3R2-S6, 19.3R3-S3; 19.4 before 19.4R3-S5; 20.1 before 20.1R3-S4; 20.2 before 20.2R3-S2; 20.3 before 20.3...
CVE-2024-39564
CVE-2024-39564 describes a double-free vulnerability in Juniper’s routing process daemon (rpd) for Junos OS and Junos OS Evolved. A malformed BGP Path attribute update can trigger a memory double-free in the rpd log path, causing the process to crash and resulting in a Denial of Service. Affected...
CVE-2025-30657
CVE-2025-30657 affects Juniper Networks Junos OS SRRD. A specific BGP update triggers improper encoding/escaping when SRRD processes data forwarded from the routing protocol daemon (rpd), causing a crash and a momentary DoS in jflow processing. The impact is a network-borne DoS with no traffic-fo...
CVE-2024-39552
CVE-2024-39552 affects Juniper Networks Junos OS and Junos OS Evolved: the RPD (routing protocol daemon) crashes when a malformed BGP UPDATE is received over an established BGP session, causing DoS. A network-based, unauthenticated attacker can trigger the crash via IPv4/IPv6 eBGP/iBGP traffic; i...
CVE-2025-30651
CVE-2025-30651 affects Juniper Networks Junos OS and Junos OS Evolved. A Buffer Access with Incorrect Length Value in the routing protocol daemon (rpd) can be triggered by a specific ICMPv6 packet to an interface configured with protocol router-advertisement, causing rpd to crash and restart and ...
CVE-2021-31369
CVE-2021-31369 affects Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC. The issue is an Allocation of Resources Without Limits or Throttling vulnerability that allows an unauthenticated network attacker to cause a partial Denial of Service by generating high-rate traffic. If a Class of ...
CVE-2024-30387
CVE-2024-30387 describes a Missing Synchronization vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on ACX5448 and ACX710. When an interface flaps while the system gathers statistics, two processes access a shared resource concurrently, causing a PFE crash and rest...
CVE-2022-22153
CVE-2022-22153 affects Junos OS flowd on SRX Series and MX Series with SPC3. A high-rate fragmented-traffic condition (fragmented packets > ~5%) can cause latency or packet loss due to insufficient algorithmic complexity and unthrottled resource allocation. Affected versions are prior to 18.2R...
CVE-2025-30645
The CVE describes a NULL-pointer dereference in the flowd daemon of Juniper Networks Junos OS on SRX Series. When specific, valid DS-Lite control traffic is sent, flowd can crash (segmentation fault), causing a DoS/network outage until flowd restarts. Affected are Junos OS on SRX Series: all vers...
CVE-2025-30660
CVE-2025-30660 affects Junos OS on Juniper MX Series with the Packet Forwarding Engine (pfe). The issue stems from an improper check for unusual conditions and can allow an unauthenticated, network-based attacker to trigger a DoS by processing a high rate of specific GRE traffic, causing the PFE ...
CVE-2022-22220
The CVE-2022-22220 issue is a TOCTOU race condition in Juniper Junos OS/rpd that can crash the process when a BGP flow route with a redirect IP is received while the next-hop reachability is flapping, enabling a network-based DoS. Affected software includes Junos OS and Junos OS Evolved across li...