Vulnerabilities in Juniper Networks
893 resultsCVE-2020-1617HIGHJunos OS: PTX1000 and PTX10000 Series, QFX10000 Series using non-AFT architectures: A specific genuine packet inspected by sFlow will cause a reboot.EPSS 1.6%CVE-2017-2312—On Juniper Networks devices running Junos OS affected versions and with LDP enabled, a specific LDP packet destined to the RE (Routing EnginEPSS 1.6%CVE-2019-0044HIGHJunos OS: SRX5000 series: Kernel crash (vmcore) upon receipt of a specific packet on fxp0 interfaceEPSS 1.6%CVE-2019-0047HIGHJunos OS: Persistent XSS vulnerability in J-WebEPSS 1.6%CVE-2018-0002HIGHMX series, SRX series: Junos OS: Denial of service vulnerability in Flowd on devices with ALG enabled.EPSS 1.5%CVE-2019-0049HIGHJunos OS: RPD process crashes when BGP peer restartsEPSS 1.5%CVE-2018-0018HIGHSRX Series: A crafted packet may lead to information disclosure and firewall rule bypass during compilation of IDP policies.EPSS 1.5%CVE-2020-1673HIGHJunos OS: Reflected Cross-site Scripting vulnerability in J-Web and web based (HTTP/HTTPS) servicesEPSS 1.5%CVE-2023-28983HIGHJunos OS Evolved: Shell Injection vulnerability in the gNOI serverEPSS 1.5%CVE-2017-10618MEDIUMJunos: RPD core due to BGP UPDATE with malformed optional transitive attributesEPSS 1.5%CVE-2022-22188HIGHJunos OS: QFX5100/QFX5110/QFX5120/QFX5200/QFX5210/EX4600/EX4650 Series: When storm control profiling is enabled and a device is under an active storm, a Heap-based Buffer Overflow in the PFE will cause a device to hang.EPSS 1.5%CVE-2021-31385HIGHJunos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to rootEPSS 1.5%CVE-2017-2321—A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unpEPSS 1.5%CVE-2020-1634HIGHJunos OS: High-End SRX Series: Multicast traffic might cause all FPCs to reset.EPSS 1.4%CVE-2018-0040CRITICALContrail Service Orchestration: hardcoded cryptographic certificates and keysEPSS 1.4%CVE-2025-21589CRITICALSession Smart Router, Session Smart Conductor, WAN Assurance Router: API Authentication Bypass vulnerabilityEPSS 1.4%CVE-2018-0025MEDIUMJunos OS: SRX Series: Credentials exposed when using HTTP and HTTPS Firewall Pass-through User AuthenticationEPSS 1.4%CVE-2018-0020HIGHJunos OS: rpd daemon cores due to malformed BGP UPDATE packetEPSS 1.4%CVE-2020-1603HIGHJunos OS: Improper handling of specific IPv6 packets sent by clients eventually kernel crash (vmcore) the device.EPSS 1.4%CVE-2018-0031MEDIUMJunos OS: Receipt of specially crafted UDP packets over MPLS may bypass stateless IP firewall rulesEPSS 1.4%