Lucene search
K

231 matches found

CVE
CVE
added 2023/01/12 12:0 a.m.77 views

CVE-2023-22413

CVE-2023-22413 affects Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC, where an IPsec6 tunnel can trigger the Multiservices PIC Management Daemon (mspmand) to core and restart when processing specific IPv4 packets. This causes an FPC crash and impacts traffic while mspmand restarts,...

7.5CVSS7.6AI score0.00644EPSS
CVE
CVE
added 2022/07/20 2:15 p.m.76 views

CVE-2022-22221

CVE-2022-22221 affects Juniper Networks Junos OS on SRX/EX Series via the download manager. The root cause is an Improper Neutralization of Special Elements in the download functionality, enabling a locally authenticated attacker with low privileges to gain full control of the device. Impact is s...

7.8CVSS7.6AI score0.00208EPSS
CVE
CVE
added 2024/04/12 3:22 p.m.76 views

CVE-2024-30382

Juniper Networks Junos OS and Junos OS Evolved are affected by CVE-2024-30382 via an Improper Handling of Exceptional Conditions in the routing protocol daemon (rpd). A network-based, unauthenticated attacker can trigger a specific routing update when CB F (CoS-based forwarding) is configured wit...

8.7CVSS6.8AI score0.0071EPSS
CVE
CVE
added 2024/04/12 3:25 p.m.76 views

CVE-2024-30397

CVE-2024-30397 affects Juniper Networks Junos OS, specifically the pkid daemon responsible for certificate verification. An improper check for unusual or exceptional conditions allows an unauthenticated network attacker to trigger a DoS by causing pkid to consume CPU and become unresponsive, brea...

8.7CVSS7.5AI score0.00346EPSS
CVE
CVE
added 2025/04/09 7:50 p.m.76 views

CVE-2025-21597

CVE-2025-21597 covers an issue in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. When BGP rib-sharding and update-threading are configured, a remote, unauthenticated, logically adjacent BGP peer can cause rpd to crash and restart via a specific timing of peer...

6CVSS5.4AI score0.00237EPSS
CVE
CVE
added 2022/07/20 2:15 p.m.75 views

CVE-2022-22217

CVE-2022-22217 affects Juniper Junos OS on QFX10K Series switches (QFX10002/10008/10016). The root cause is an improper check that allows malformed MLD packets looping on a multi-homed ESI with VXLAN to be forwarded back to the peer, violating split horizon and causing a Denial of Service. Affect...

6.5CVSS6.4AI score0.00324EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.75 views

CVE-2022-22220

The CVE-2022-22220 issue is a TOCTOU race condition in Juniper Junos OS/rpd that can crash the process when a BGP flow route with a redirect IP is received while the next-hop reachability is flapping, enabling a network-based DoS. Affected software includes Junos OS and Junos OS Evolved across li...

5.9CVSS5.7AI score0.00444EPSS
CVE
CVE
added 2023/01/12 12:0 a.m.75 views

CVE-2023-22394

Summary of CVE-2023-22394 — Junos OS SRX/MX SIP ALG memory leak (DoS) The vulnerability arises in Juniper Networks Junos OS when handling SIP calls with SIP ALG enabled, causing a memory leak that can degrade or disrupt SIP call processing and related applications. Affected products include Junos...

7.5CVSS7.4AI score0.00616EPSS
CVE
CVE
added 2024/04/12 3:22 p.m.75 views

CVE-2024-30384

CVE-2024-30384 concerns Juniper Networks Junos OS on the EX4300 Series. The issue is an improper check for unusual or exceptional conditions in the Packet Forwarding Engine (PFE) that lets a locally authenticated user with low privileges trigger a PFE crash by issuing a specific CLI command. The ...

6.8CVSS6.6AI score0.00168EPSS
CVE
CVE
added 2024/07/10 10:46 p.m.75 views

CVE-2024-39561

CVE-2024-39561 affects Juniper Junos OS on SRX4600/SRX5000 Series. The vulnerability stems from an improper check in the flow daemon (flowd) that can allow TCP packets with SYN/FIN or SYN/RST flags to bypass the intended block when no-syn-check and Express Path are enabled, causing such packets t...

6.9CVSS5.7AI score0.00313EPSS
CVE
CVE
added 2025/04/09 7:57 p.m.75 views

CVE-2025-30653

CVE-2025-30653 describes an Expired Pointer Dereference in Juniper Networks Junos OS and Junos OS Evolved RPD (Routing Protocol Daemon). When an MPLS LSP is configured with node-link-protection and transport-class and an LSP flaps, rpd can crash and restart, causing a Denial of Service. Affected ...

6.5CVSS6.4AI score0.00235EPSS
CVE
CVE
added 2024/07/11 4:3 p.m.74 views

CVE-2024-39529

CVE-2024-39529 describes a Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE) of Junos OS on SRX Series, allowing an unauthenticated, network-based attacker to cause a DoS. Affected Junos OS versions include: prior to 21.4R3-S6; 22.2 before 22.2R3-S3; 2...

8.7CVSS7.6AI score0.00476EPSS
CVE
CVE
added 2025/04/09 8:2 p.m.74 views

CVE-2025-30658

CVE-2025-30658 affects Junos OS on SRX Series with Anti-Virus enabled. A memory leak in the Anti-Virus jbufs is triggered by certain HTTP responses, enabling an unauthenticated, network-based attacker to cause a DoS by exhausting jbuf memory and halting transit traffic. Affected versions (per Jun...

8.7CVSS7.5AI score0.004EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.73 views

CVE-2022-22201

CVE-2022-22201 affects Juniper Networks Junos OS on SRX5000/SRX4000/vSRX with PowerMode IPsec. The Packet Forwarding Engine (PFE) crashes when receiving a malformed ESP packet that matches an established IPsec tunnel, due to improper validation of index/position/offset in input. Impact is Denial ...

7.5CVSS7.5AI score0.00616EPSS
CVE
CVE
added 2022/07/20 2:15 p.m.73 views

CVE-2022-22216

CVE-2022-22216 is a memory-disclosure vulnerability in Juniper Junos OS PFE affecting PTX1000/10000 Series and QFX10000/PTX5000 Series. The root cause is Etherleak: some Ethernet frames are not reliably padded, allowing an adjacent attacker to read fragments of system memory or data from previous...

4.3CVSS5AI score0.00291EPSS
CVE
CVE
added 2023/01/12 12:0 a.m.73 views

CVE-2023-22405

CVE-2023-22405 describes a DoS in Juniper Networks Junos OS caused by an improper preservation of consistency between independent representations of shared state in the Packet Forwarding Engine (PFE). When devices run with service-provider/SP style switching and MAC limiting on an Aggregated Ethe...

6.5CVSS6.5AI score0.00309EPSS
CVE
CVE
added 2022/07/20 2:15 p.m.72 views

CVE-2022-22214

CVE-2022-22214 describes an improper input validation in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS and Junos OS Evolved. An adjacent attacker can trigger a specific transit IPv6 packet over MPLS that causes an FPC to crash and reboot, with continued receipt leading to a sust...

6.5CVSS6.3AI score0.0031EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.72 views

CVE-2022-22246

CVE-2022-22246 is a PHP Local File Inclusion vulnerability in the J-Web component of Juniper Networks Junos OS. A low-privileged authenticated attacker could include and execute an untrusted PHP file stored on the server, potentially leading to a complete system compromise when chained with other...

8.8CVSS8.1AI score0.00639EPSS
CVE
CVE
added 2024/07/10 10:58 p.m.72 views

CVE-2024-39511

The CVE-2024-39511 entry concerns Juniper Networks Junos OS: an improper input validation vulnerability in the 802.1X Authentication (dot1x) Daemon. When an operator runs a specific dot1x command, the dot1x daemon may crash, causing a Denial of Service that clears all 802.1x client authentication...

6.8CVSS5.9AI score0.00148EPSS
CVE
CVE
added 2024/07/11 4:21 p.m.72 views

CVE-2024-39543

CVE-2024-39543 affects Juniper Networks Junos OS and Junos OS Evolved. The root cause is a buffer copy without input size validation in the routing protocol daemon (rpd), which allows an unauthenticated adjacent attacker to send crafted RPKI-RTR packets, crashing rpd and causing a DoS. Affected r...

7.1CVSS6.4AI score0.00332EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.71 views

CVE-2022-22218

On SRX Series devices running Junos OS, CVE-2022-22218 describes an improper check during CMPv2 auto re-enrollment that allows a network-based, unauthenticated attacker to trigger a Denial of Service by crashing the pkid process. The issue affects Junos OS on SRX Series across multiple releases (...

7.5CVSS7.6AI score0.00406EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.71 views

CVE-2022-22243

CVE-2022-22243 is an XPath Injection vulnerability in Juniper Networks Junos OS J-Web component. It enables an authenticated attacker to add an XPath command to the XPath stream, potentially chaining to other unspecified vulnerabilities and causing partial loss of confidentiality. Affected softwa...

4.3CVSS5.1AI score0.00435EPSS
CVE
CVE
added 2023/01/12 12:0 a.m.71 views

CVE-2023-22410

The CVE-2023-22410 entry affects Juniper Networks Junos OS on MX Series with MPC10/MPC11 line cards. The issue is a memory leak in AftDdosScfdFlow caused by enabling Suspicious Control Flow Detection (scfd); when attackers send specific traffic, memory is allocated dynamically and not freed, lead...

7.5CVSS6.8AI score0.00781EPSS
CVE
CVE
added 2024/01/12 12:52 a.m.71 views

CVE-2024-21594

CVE-2024-21594 affects Juniper Networks Junos OS on the SRX 5000 Series. It is a heap-based buffer overflow in the Network Services Daemon (NSD) that, when a specific command is repeatedly executed, can corrupt memory and cause a crash of the Flow Processing Daemon (flowd), requiring an NSD resta...

5.5CVSS5.5AI score0.00173EPSS
CVE
CVE
added 2024/10/09 8:0 p.m.71 views

CVE-2024-39515

CVE-2024-39515 affects Juniper Junos OS and Junos OS Evolved when BGP traceoptions are enabled. An unauthenticated network-based attacker can send a specifically malformed BGP packet to cause the routing protocol daemon (rpd) to crash and restart, producing a Denial of Service. Sustained processi...

8.7CVSS7.6AI score0.00438EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.70 views

CVE-2022-22242

CVE-2022-22242 is a reflected Cross-site Scripting (XSS) vulnerability in Juniper Networks Junos OS, specifically in the J-Web component. An unauthenticated attacker can cause malicious scripts to be reflected off J-Web into the victim’s browser within the J-Web session, potentially compromising ...

6.1CVSS6.2AI score0.02468EPSS
In wild
CVE
CVE
added 2023/01/12 12:0 a.m.70 views

CVE-2023-22395

CVE-2023-22395 describes a Missing Release of Memory after Effective Lifetime vulnerability in Juniper Networks Junos OS. An unauthenticated, adjacent attacker can cause a Denial of Service by sending specific MPLS-scoped packets to an IRB interface, triggering a buffer (mbuf) leak. Sustained tra...

6.5CVSS6.6AI score0.00296EPSS
CVE
CVE
added 2023/10/12 10:58 p.m.70 views

CVE-2023-36841

CVE-2023-36841 affects Juniper Networks Junos OS on MX Series with PPPoE-configured interfaces (tcp-mss enabled). An unauthenticated network attacker sending malformed TCP traffic can trigger an infinite loop in the Packet Forwarding Engine (PFE), leading to DoS as resources are exhausted and a m...

7.5CVSS7.6AI score0.00515EPSS
CVE
CVE
added 2023/10/11 8:55 p.m.70 views

CVE-2023-44188

CVE-2023-44188 is a TOCTOU race condition in Juniper Networks Junos OS telemetry processing that can cause the jkdsd daemon to crash and trigger DoS when multiple telemetry requests are sent from different collectors. Affected Junos OS versions span 20.4R3-S9 and earlier (various 21.x, 22.x, 23.1...

5.3CVSS5.1AI score0.0033EPSS
CVE
CVE
added 2024/04/12 3:7 p.m.70 views

CVE-2024-30394

CVE-2024-30394 affects Junos OS and Junos OS Evolved. It is a Stack-based Buffer Overflow in the Routing Protocol Daemon (RPD) triggered when EVPN is configured and a specific EVPN type-5 route is learned via BGP, causing an unauthenticated network-based attacker to crash rpd and induce DoS. Affe...

8.7CVSS6.7AI score0.00664EPSS
CVE
CVE
added 2024/10/09 8:0 p.m.70 views

CVE-2024-39516

CVE-2024-39516 is an Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. An unauthenticated network attacker can send a specially malformed BGP packet to cause rpd to crash and restart, producing a DoS. The issue affects iBGP/eB...

8.7CVSS7.6AI score0.00433EPSS
CVE
CVE
added 2022/01/19 12:21 a.m.69 views

CVE-2022-22162

CVE-2022-22162 affects Juniper Networks Junos OS. The issue is a Information Disclosure/Privilege Elevation vulnerability in the CLI where a locally authenticated, low-privilege user can elevate privileges to the highest J-Web user, potentially leading to full device compromise. Affected {Juniper...

7.8CVSS7.2AI score0.00243EPSS
CVE
CVE
added 2022/01/19 12:21 a.m.69 views

CVE-2022-22173

CVE-2022-22173 describes a memory leak in Juniper Networks Junos OS PKI daemon (pkid) when a CRL download fails, causing unauthenticated networked DoS by exhausting memory over time. Affected are Junos OS versions prior to specific revisions across 18.3R3-S6, 18.4 (R2-S9, R3-S10), 19.1 (R2-S3, R3...

7.5CVSS7.5AI score0.00588EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.69 views

CVE-2022-22234

Summary (CVE-2022-22234) An Improper Preservation of Consistency Between Independent Representations of Shared State in the Packet Forwarding Engine (PFE) of Juniper Junos OS can cause a DoS when the device is very busy, e.g., during CLI show commands, potentially marking SFPs as unplugged and af...

5.5CVSS5.3AI score0.00174EPSS
CVE
CVE
added 2025/04/09 7:54 p.m.68 views

CVE-2025-30648

Summary: CVE-2025-30648 affects Juniper Networks Junos OS and Junos OS Evolved. An Improper Input Validation in the Juniper DHCP Daemon (jdhcpd) allows an unauthenticated, adjacent attacker to crash the jdhcpd when it receives a specifically malformed DHCP packet, causing a Denial of Service (DoS...

7.4CVSS7.4AI score0.00223EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.67 views

CVE-2022-22245

CVE-2022-22245 is a path traversal flaw in the J-Web component of Juniper Networks Junos OS that allows an authenticated, remote attacker to upload arbitrary files by bypassing validation, potentially compromising filesystem integrity. Affected versions range up to the listed fixed releases (e.g....

4.3CVSS5.2AI score0.00619EPSS
CVE
CVE
added 2023/10/12 10:55 p.m.67 views

CVE-2023-22392

CVE-2023-22392 describes a memory-leak DoS in Juniper Junos OS PFE caused by missing release of memory after its effective lifetime. Affected devices include PTX3000/PTX5000/QFX10000 and PTX1000/10002/10004/10008/10016 with LC110x LC… FPCs (and LC110x variants) and cover multiple older Junos rele...

6.5CVSS6.7AI score0.00282EPSS
CVE
CVE
added 2024/01/25 10:48 p.m.67 views

CVE-2024-21619

CVE-2024-21619 describes a vulnerability in Juniper Networks Junos OS on SRX and EX series where an unauthenticated attacker can access sensitive configuration information via the J-Web interface. The root cause is a Missing Authentication for a Critical Function combined with a Generation of Err...

7.5CVSS8AI score0.00882EPSS
CVE
CVE
added 2024/07/10 10:40 p.m.67 views

CVE-2024-39558

CVE-2024-39558 affects Junos OS and Junos OS Evolved. An Unchecked Return Value in Routing Protocol Daemon (rpd) can be triggered by a specific PIM packet when MoFRR is configured, causing rpd to crash and reboot and leading to DoS. Impact is confirmed on multiple Junos OS/Junos OS Evolved versio...

7.1CVSS6.4AI score0.00259EPSS
CVE
CVE
added 2023/01/12 12:0 a.m.66 views

CVE-2023-22391

CVE-2023-22391 affects Juniper Networks Junos OS on ACX2K Series. The issue is a class-of-service (CoS) queue management flaw that misroutes specific high-priority traffic (BGP, PIM, ICMP/ICMPv6 ND, ISAKMP) into a queue, enabling an unauthenticated network-based attacker to cause a DoS by sustain...

7.5CVSS7.5AI score0.00616EPSS
CVE
CVE
added 2023/01/12 12:0 a.m.66 views

CVE-2023-22406

CVE-2023-22406 affects Juniper Networks Junos OS and Junos OS Evolved. It is a memory-leak/DoS issue in the kernel that manifests when a peer interface flaps in a Segment Routing scenario using OSPF, causing continuous memory growth in rpd and eventual rpd crash. Affected versions include Junos O...

6.5CVSS6.4AI score0.00309EPSS
CVE
CVE
added 2023/10/12 11:6 p.m.66 views

CVE-2023-44203

CVE-2023-44203 affects Juniper Junos OS Packet Forwarding Engine (pfe) on QFX5000 Series and EX2300/EX3400/EX4100/EX4400/EX4600. Affected condition: an IGMP-specific packet in an isolated VLAN can be duplicated to all ports in the primary VLAN, causing packet flooding and a DoS. Affected platform...

6.5CVSS6.4AI score0.0027EPSS
CVE
CVE
added 2024/07/10 11:5 p.m.66 views

CVE-2024-39514

CVE-2024-39514 affects Junos OS and Junos OS Evolved. An attacker—adjacent, unauthenticated—can trigger a crash of the Routing Protocol Daemon (rpd) by sending specific traffic on devices with EVPN-VPWS and IGMP-snooping enabled, causing a DoS. Affected ranges are listed per release: Junos OS ver...

7.1CVSS6.6AI score0.00246EPSS
CVE
CVE
added 2024/07/11 4:2 p.m.66 views

CVE-2024-39528

CVE-2024-39528 — AUse After Free in Juniper Junos OS/Junos OS Evolved Routing Protocol Daemon (rpd) causes a segmentation fault on a specific sequence (routing-instance deactivation + SNMP request), leading to rpd crash and DoS. Affected: Junos OS and Junos OS Evolved. Reported vulnerable version...

6CVSS5.5AI score0.00335EPSS
CVE
CVE
added 2025/04/09 8:1 p.m.66 views

CVE-2025-30655

CVE-2025-30655 affects Juniper Networks Junos OS and Junos OS Evolved. The issue is in the Routing Protocol Daemon (rpd) and causes a local, low-privileged attacker to trigger a Denial-of-Service by running the CLI command "show bgp neighbor" when BGP RIB sharding and update-threading are enabled...

6.8CVSS7AI score0.00139EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.65 views

CVE-2022-22244

CVE-2022-22244 affects Juniper Networks Junos OS in the J-Web component. An unauthenticated attacker can send a crafted POST to reach the XPath channel, potentially chaining to other vulnerabilities and causing a partial loss of confidentiality. Affected Junos OS versions range broadly from befor...

5.3CVSS5.7AI score0.0049EPSS
CVE
CVE
added 2023/10/12 11:5 p.m.65 views

CVE-2023-44198

CVE-2023-44198 affects Juniper Networks Junos OS SIP ALG on SRX Series and MX Series. The vulnerability stems from an improper check for unusual or exceptional conditions, enabling an unauthenticated, network-based attacker to cause an integrity impact in connected networks. When SIP ALG is enabl...

7.5CVSS6.6AI score0.00354EPSS
CVE
CVE
added 2023/10/12 11:5 p.m.65 views

CVE-2023-44199

CVE-2023-44199 is a vulnerability in Juniper Networks Junos OS on MX Series where an improper check in the Packet Forwarding Engine (PFE) can be triggered by network-based, unauthenticated attackers to cause a Denial of Service via prolonged routing churn when PTP is configured. Affected MX Serie...

7.5CVSS7.6AI score0.00538EPSS
CVE
CVE
added 2022/07/20 2:10 p.m.64 views

CVE-2022-22202

The CVE concerns Juniper Networks Junos OS on PTX Series (including PTX1000, PTX3000 NextGen, PTX5000, PTX10002-60C, PTX10008, PTX10016). It is an improper handling of exceptional conditions that allows an unauthenticated MPLS-based attacker to trigger a DoS by crashing the dcpfe process and rest...

6.5CVSS6.6AI score0.00518EPSS
CVE
CVE
added 2022/10/18 2:46 a.m.64 views

CVE-2022-22224

The CVE-2022-22224 issue affects Juniper Networks Junos OS and Junos OS Evolved, where processing a malformed OSPF TLV can cause the periodic packet management daemon (PPMD) to enter an infinite loop. This unblocks an unauthenticated adjacent attacker to induce a DoS by affecting OSPF neighbor re...

6.5CVSS6.5AI score0.00296EPSS
Total number of security vulnerabilities231