Junos@12.1x47 Security Vulnerabilities and Issues — Junos@12.1x47 CVE List

Lucene search

JuniperJunos12.1x47

7 matches found

CVE•added 2017/07/17 1:18 p.m.•51 views

CVE-2017-2349

A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series devices potentially allows a user with login access to the device to execute shell commands and elevate privileges. Affected releases are Juniper Networks Junos OS 12.1X44 prior to 12.1X44-D60; 12.1X46 p...

9.9CVSS9.5AI score0.03099EPSS

CVE•added 2017/10/13 5:29 p.m.•47 views

CVE-2017-10608

Any Juniper Networks SRX series device with one or more ALGs enabled may experience a flowd crash when traffic is processed by the Sun/MS-RPC ALGs. This vulnerability in the Sun/MS-RPC ALG services component of Junos OS allows an attacker to cause a repeated denial of service against the target. Re...

7.5CVSS7.5AI score0.00389EPSS

CVE•added 2017/10/13 5:29 p.m.•46 views

CVE-2016-4922

Certain combinations of Junos OS CLI commands and arguments have been found to be exploitable in a way that can allow unauthorized access to the operating system. This may allow any user with permissions to run these CLI commands the ability to achieve elevated privileges and gain complete control ...

8.4CVSS8.3AI score0.00084EPSS

CVE•added 2017/10/13 5:29 p.m.•46 views

CVE-2016-4923

Insufficient cross site scripting protection in J-Web component in Juniper Networks Junos OS may potentially allow a remote unauthenticated user to inject web script or HTML and steal sensitive data and credentials from a J-Web session and to perform administrative actions on the Junos device. Juni...

8CVSS6.6AI score0.00328EPSS

CVE•added 2017/05/30 2:29 p.m.•44 views

CVE-2017-2303

On Juniper Networks products or platforms running Junos OS 12.1X46 prior to 12.1X46-D50, 12.1X47 prior to 12.1X47-D40, 12.3 prior to 12.3R13, 12.3X48 prior to 12.3X48-D30, 13.2X51 prior to 13.2X51-D40, 13.3 prior to 13.3R10, 14.1 prior to 14.1R8, 14.1X53 prior to 14.1X53-D35, 14.1X55 prior to 14.1X...

7.8CVSS7.4AI score0.00808EPSS

CVE•added 2017/05/30 2:29 p.m.•42 views

CVE-2017-2302

On Juniper Networks products or platforms running Junos OS 12.1X46 prior to 12.1X46-D55, 12.1X47 prior to 12.1X47-D45, 12.3R13 prior to 12.3R13, 12.3X48 prior to 12.3X48-D35, 13.3 prior to 13.3R10, 14.1 prior to 14.1R8, 14.1X53 prior to 14.1X53-D40, 14.1X55 prior to 14.1X55-D35, 14.2 prior to 14.2R...

7.8CVSS7.4AI score0.00808EPSS

CVE•added 2017/10/13 5:29 p.m.•36 views

CVE-2016-1261

J-Web does not validate certain input that may lead to cross-site request forgery (CSRF) issues or cause a denial of J-Web service (DoS).

8.8CVSS7.9AI score0.0015EPSS