Lucene search

K
JuniperJunos21.1

163 matches found

CVE
CVE
added 2022/01/19 1:15 a.m.60 views

CVE-2022-22170

A Missing Release of Resource after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause a Denial of Service (DoS) by sending specific packets over VXLAN which cause heap memory to leak and on exhau...

7.5CVSS7.4AI score0.0039EPSS
CVE
CVE
added 2022/01/19 1:15 a.m.60 views

CVE-2022-22174

A vulnerability in the processing of inbound IPv6 packets in Juniper Networks Junos OS on QFX5000 Series and EX4600 switches may cause the memory to not be freed, leading to a packet DMA memory leak, and eventual Denial of Service (DoS) condition. Once the condition occurs, further packet processin...

7.5CVSS7.7AI score0.00389EPSS
CVE
CVE
added 2022/01/19 1:15 a.m.60 views

CVE-2022-22180

An Improper Check for Unusual or Exceptional Conditions vulnerability in the processing of specific IPv6 packets on certain EX Series devices may lead to exhaustion of DMA memory causing a Denial of Service (DoS). Over time, exploitation of this vulnerability may cause traffic to stop being forward...

7.5CVSS7.8AI score0.00389EPSS
CVE
CVE
added 2022/07/20 3:15 p.m.60 views

CVE-2022-22207

A Use After Free vulnerability in the Advanced Forwarding Toolkit (AFT) manager process (aftmand) of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause a kernel crash due to intensive polling of Abstracted Fabric (AF) interface statistics and thereby a Denial of Service...

7.5CVSS7.4AI score0.00538EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.60 views

CVE-2023-22412

An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC card and SRX Series allows an unauthenticated, network-based attacker to cause a flow processing daemon (flowd) crash and thereby a Denial of Service (DoS). Continued receipt of these sp...

7.5CVSS7.5AI score0.00145EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.58 views

CVE-2021-31369

On MX Series platforms with MS-MPC/MS-MIC, an Allocation of Resources Without Limits or Throttling vulnerability in Juniper Networks Junos OS allows an unauthenticated network attacker to cause a partial Denial of Service (DoS) with a high rate of specific traffic. If a Class of Service (CoS) rule ...

5.3CVSS5.1AI score0.00268EPSS
CVE
CVE
added 2022/01/19 1:15 a.m.58 views

CVE-2022-22173

A Missing Release of Memory after Effective Lifetime vulnerability in the Public Key Infrastructure daemon (pkid) of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause Denial of Service (DoS). In a scenario where Public Key Infrastructure (PKI) is used in combination wi...

7.5CVSS7.5AI score0.00285EPSS
CVE
CVE
added 2022/07/20 3:15 p.m.58 views

CVE-2022-22214

An Improper Input Validation vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent attacker to cause a PFE crash and thereby a Denial of Service (DoS). An FPC will crash and reboot after receiving a specific transit IPv6 packet over...

6.5CVSS6.3AI score0.00067EPSS
CVE
CVE
added 2022/07/20 3:15 p.m.58 views

CVE-2022-22217

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to cause a Denial of Service (DoS). The issue is caused by malformed MLD packets looping on a multi-homed Ethernet Seg...

6.5CVSS6.4AI score0.00185EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.58 views

CVE-2023-22405

An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS) to device due to out of resources. When a devi...

6.5CVSS6.5AI score0.00119EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.58 views

CVE-2023-22414

A Missing Release of Memory after Effective Lifetime vulnerability in Flexible PIC Concentrator (FPC) of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker from the same shared physical or logical network, to cause a heap memory leak and leading to FPC crash. On all Junos PTX Se...

6.5CVSS6.5AI score0.00101EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.57 views

CVE-2021-31359

A local privilege escalation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged user to cause the Juniper DHCP daemon (jdhcpd) process to crash, resulting in a Denial of Service (DoS), or execute arbitrary commands as root. Continued processing of malicio...

7.8CVSS8.1AI score0.00085EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.57 views

CVE-2021-31385

An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in J-Web of Juniper Networks Junos OS allows any low-privileged authenticated attacker to elevate their privileges to root. This issue affects: Juniper Networks Junos OS 12.3 versions prior to 12.3R12-S1...

8.8CVSS8.6AI score0.00709EPSS
CVE
CVE
added 2022/07/20 3:15 p.m.57 views

CVE-2022-22205

A Missing Release of Memory after Effective Lifetime vulnerability in the Application Quality of Experience (appqoe) subsystem of the PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated network based attacker to cause a Denial of Service (DoS). Upon receiving specific traffic a...

7.5CVSS7.6AI score0.00608EPSS
CVE
CVE
added 2022/07/20 3:15 p.m.57 views

CVE-2022-22206

A Buffer Overflow vulnerability in the PFE of Juniper Networks Junos OS on SRX series allows an unauthenticated network based attacker to cause a Denial of Service (DoS). The PFE will crash when specific traffic is scanned by Enhanced Web Filtering safe-search feature of UTM (Unified Threat managem...

7.5CVSS7.5AI score0.00802EPSS
CVE
CVE
added 2022/07/20 3:15 p.m.57 views

CVE-2022-22216

An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the PFE of Juniper Networks Junos OS on PTX Series and QFX10k Series allows an adjacent unauthenticated attacker to gain access to sensitive information. PTX1000 and PTX10000 Series, and QFX10000 Series and PTX5000 Serie...

4.3CVSS5AI score0.03606EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.57 views

CVE-2023-22404

An Out-of-bounds Write vulnerability in the Internet Key Exchange Protocol daemon (iked) of Juniper Networks Junos OS on SRX series and MX with SPC3 allows an authenticated, network-based attacker to cause a Denial of Service (DoS). iked will crash and restart, and the tunnel will not come up when ...

6.5CVSS6.5AI score0.002EPSS
CVE
CVE
added 2023/10/12 11:15 p.m.57 views

CVE-2023-36841

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on MX Series allows a unauthenticated network-based attacker to cause an infinite loop, resulting in a Denial of Service (DoS). An attacker who sends malformed TC...

7.5CVSS7.6AI score0.00126EPSS
CVE
CVE
added 2022/01/19 1:15 a.m.56 views

CVE-2022-22175

An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and SRX Series allows an unauthenticated networked attacker to cause a flowprocessing daemon (flowd) crash and thereby a Denial of Service (DoS). Continued receipt of these specific packets will cause a susta...

7.5CVSS7.5AI score0.00302EPSS
CVE
CVE
added 2022/10/18 3:15 a.m.56 views

CVE-2022-22218

On SRX Series devices, an Improper Check for Unusual or Exceptional Conditions when using Certificate Management Protocol Version 2 (CMPv2) auto re-enrollment, allows a network-based, unauthenticated attacker to cause a Denial of Service (DoS) by crashing the pkid process. The pkid process cannot h...

7.5CVSS7.6AI score0.00253EPSS
CVE
CVE
added 2022/10/18 3:15 a.m.56 views

CVE-2022-22225

A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated attacker with an established BGP session to cause a Denial of Service (DoS). In a BGP multipath scenario, when one of th...

5.9CVSS5.8AI score0.00158EPSS
CVE
CVE
added 2022/10/18 3:15 a.m.56 views

CVE-2022-22228

An Improper Validation of Specified Type of Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS allows an attacker to cause an RPD memory leak leading to a Denial of Service (DoS). This memory leak only occurs when the attacker's packets are destined to any configu...

7.5CVSS7.4AI score0.00172EPSS
CVE
CVE
added 2022/10/18 3:15 a.m.56 views

CVE-2022-22243

An XPath Injection vulnerability due to Improper Input Validation in the J-Web component of Juniper Networks Junos OS allows an authenticated attacker to add an XPath command to the XPath stream, which may allow chaining to other unspecified vulnerabilities, leading to a partial loss of confidentia...

4.3CVSS5.1AI score0.00412EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.56 views

CVE-2023-22399

When sFlow is enabled and it monitors a packet forwarded via ECMP, a buffer management vulnerability in the dcpfe process of Juniper Networks Junos OS on QFX10K Series systems allows an attacker to cause the Packet Forwarding Engine (PFE) to crash and restart by sending specific genuine packets to ...

7.5CVSS7.6AI score0.00185EPSS
CVE
CVE
added 2022/01/19 1:15 a.m.55 views

CVE-2022-22162

A Generation of Error Message Containing Sensitive Information vulnerability in the CLI of Juniper Networks Junos OS allows a locally authenticated attacker with low privileges to elevate these to the level of any other user logged in via J-Web at this time, potential leading to a full compromise o...

7.8CVSS7.2AI score0.00127EPSS
CVE
CVE
added 2022/01/19 1:15 a.m.55 views

CVE-2022-22167

A traffic classification vulnerability in Juniper Networks Junos OS on the SRX Series Services Gateways may allow an attacker to bypass Juniper Deep Packet Inspection (JDPI) rules and access unauthorized networks or resources, when 'no-syn-check' is enabled on the device. While JDPI correctly class...

9.8CVSS8.5AI score0.00255EPSS
CVE
CVE
added 2022/10/18 3:15 a.m.55 views

CVE-2022-22242

A Cross-site Scripting (XSS) vulnerability in the J-Web component of Juniper Networks Junos OS allows an unauthenticated attacker to run malicious scripts reflected off of J-Web to the victim's browser in the context of their session within J-Web. This issue affects Juniper Networks Junos OS all ve...

6.1CVSS6.2AI score0.85707EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.55 views

CVE-2023-22395

A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper Networks Junos OS allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS). In an MPLS scenario specific packets destined to an Integrated Routing and Bridging (irb) interface of the d...

6.5CVSS6.6AI score0.0008EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.55 views

CVE-2023-22398

An Access of Uninitialized Pointer vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privileges to cause a Denial of Service (DoS). When an MPLS ping is performed on BGP LSPs, the RPD might crash. Re...

5.5CVSS5.2AI score0.00044EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.55 views

CVE-2023-22411

An Out-of-Bounds Write vulnerability in Flow Processing Daemon (flowd) of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause Denial of Service (DoS). On SRX Series devices using Unified Policies with IPv6, when a specific IPv6 packet goes through a dynamic-applicat...

7.5CVSS7.5AI score0.00185EPSS
CVE
CVE
added 2022/10/18 3:15 a.m.54 views

CVE-2022-22245

A Path Traversal vulnerability in the J-Web component of Juniper Networks Junos OS allows an authenticated attacker to upload arbitrary files to the device by bypassing validation checks built into Junos OS. The attacker should not be able to execute the file due to validation checks built into Jun...

4.3CVSS5.2AI score0.0009EPSS
CVE
CVE
added 2022/10/18 3:15 a.m.54 views

CVE-2022-22246

A PHP Local File Inclusion (LFI) vulnerability in the J-Web component of Juniper Networks Junos OS may allow a low-privileged authenticated attacker to execute an untrusted PHP file. By chaining this vulnerability with other unspecified vulnerabilities, and by circumventing existing attack requirem...

8.8CVSS8.1AI score0.00252EPSS
CVE
CVE
added 2023/10/11 9:15 p.m.54 views

CVE-2023-44188

A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in telemetry processing of Juniper Networks Junos OS allows a network-based authenticated attacker to flood the system with multiple telemetry requests, causing the Junos Kernel Debugging Streaming Daemon (jkdsd) process to crash, le...

5.3CVSS5.1AI score0.00102EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.53 views

CVE-2021-31353

An Improper Handling of Exceptional Conditions vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an attacker to inject a specific BGP update, causing the routing protocol daemon (RPD) to crash and restart, leading to a Denial of Service (DoS). Continued receipt and processing o...

7.5CVSS7.5AI score0.0041EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.53 views

CVE-2021-31366

An Unchecked Return Value vulnerability in the authd (authentication daemon) of Juniper Networks Junos OS on MX Series configured for subscriber management / BBE allows an adjacent attacker to cause a crash by sending a specific username. This impacts authentication, authorization, and accounting (...

6.5CVSS6.4AI score0.0023EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.53 views

CVE-2021-31370

An Incomplete List of Disallowed Inputs vulnerability in Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on QFX5000 Series and EX4600 Series allows an adjacent unauthenticated attacker which sends a high rate of specific multicast traffic to cause control traffic received from the netwo...

6.5CVSS6.4AI score0.00084EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.53 views

CVE-2021-31378

In broadband environments, including but not limited to Enhanced Subscriber Management, (CHAP, PPP, DHCP, etc.), on Juniper Networks Junos OS devices where RADIUS servers are configured for managing subscriber access and a subscriber is logged in and then requests to logout, the subscriber may be f...

7.5CVSS7AI score0.00275EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.53 views

CVE-2021-31384

Due to a Missing Authorization weakness and Insufficient Granularity of Access Control in a specific device configuration, a vulnerability exists in Juniper Networks Junos OS on SRX Series whereby an attacker who attempts to access J-Web administrative interfaces can successfully do so from any dev...

10CVSS8.2AI score0.00365EPSS
CVE
CVE
added 2022/07/20 3:15 p.m.53 views

CVE-2022-22204

An Improper Release of Memory Before Removing Last Reference vulnerability in the Session Initiation Protocol (SIP) Application Layer Gateway (ALG) of Juniper Networks Junos OS allows unauthenticated network-based attacker to cause a partial Denial of Service (DoS). On all MX and SRX platforms, if ...

5.3CVSS5.2AI score0.00148EPSS
CVE
CVE
added 2023/10/12 11:15 p.m.53 views

CVE-2023-22392

A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS). PTX3000, PTX5000, QFX10000, PTX1000, PTX10002, and PTX10004, PTX10008 and PTX10016 w...

6.5CVSS6.7AI score0.00066EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.53 views

CVE-2023-22406

A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS). In a segment-routing scenario with OSPF as IGP, when a peer interface continuously flap...

6.5CVSS6.4AI score0.00101EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.53 views

CVE-2023-22416

A Buffer Overflow vulnerability in SIP ALG of Juniper Networks Junos OS allows a network-based, unauthenticated attacker to cause a Denial of Service (DoS). On all MX Series and SRX Series platform with SIP ALG enabled, when a malformed SIP packet is received, the flow processing daemon (flowd) wil...

7.5CVSS7.5AI score0.00291EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.52 views

CVE-2021-31355

A persistent cross-site scripting (XSS) vulnerability in the captive portal graphical user interface of Juniper Networks Junos OS may allow a remote authenticated user to inject web script or HTML and steal sensitive data and credentials from a web administration session, possibly tricking a follow...

8CVSS5.8AI score0.00329EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.52 views

CVE-2021-31386

A Protection Mechanism Failure vulnerability in the J-Web HTTP service of Juniper Networks Junos OS allows a remote unauthenticated attacker to perform Person-in-the-Middle (PitM) attacks against the device. This issue affects: Juniper Networks Junos OS 12.3 versions prior to 12.3R12-S20; 15.1 vers...

5.9CVSS5.4AI score0.00148EPSS
CVE
CVE
added 2022/01/19 1:15 a.m.52 views

CVE-2022-22179

A Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Juniper DHCP daemon (jdhcpd) of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to cause a crash of jdhcpd and thereby a Denial of Service (DoS). In a scenario where DHCP relay or local...

6.5CVSS6.5AI score0.00063EPSS
CVE
CVE
added 2022/10/18 3:15 a.m.52 views

CVE-2022-22201

An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service (DoS). On SRX5000 Series with SPC3, SRX4000 Series, and vSRX, when P...

7.5CVSS7.5AI score0.00197EPSS
CVE
CVE
added 2023/01/13 12:15 a.m.52 views

CVE-2023-22391

A vulnerability in class-of-service (CoS) queue management in Juniper Networks Junos OS on the ACX2K Series devices allows an unauthenticated network-based attacker to cause a Denial of Service (DoS). Specific packets are being incorrectly routed to a queue used for other high-priority traffic such...

7.5CVSS7.5AI score0.00141EPSS
CVE
CVE
added 2023/10/13 12:15 a.m.52 views

CVE-2023-44183

An Improper Input Validation vulnerability in the VxLAN packet forwarding engine (PFE) of Juniper Networks Junos OS on QFX5000 Series, EX4600 Series devices allows an unauthenticated, adjacent attacker, sending two or more genuine packets in the same VxLAN topology to possibly cause a DMA memory le...

6.5CVSS6.1AI score0.00038EPSS
CVE
CVE
added 2023/10/13 12:15 a.m.52 views

CVE-2023-44201

An Incorrect Permission Assignment for Critical Resource vulnerability in a specific file of Juniper Networks Junos OS and Junos OS Evolved allows a local authenticated attacker to read configuration changes without having the permissions. When a user with the respective permissions commits a confi...

5.5CVSS5.4AI score0.00038EPSS
CVE
CVE
added 2021/10/19 7:15 p.m.51 views

CVE-2021-31371

Juniper Networks Junos OS uses the 128.0.0.0/2 subnet for internal communications between the RE and PFEs. It was discovered that packets utilizing these IP addresses may egress an QFX5000 Series switch, leaking configuration information such as heartbeats, kernel versions, etc. out to the Internet...

5.3CVSS5.1AI score0.00215EPSS
Total number of security vulnerabilities163