Vulnerabilities in Juniper Networks
893 resultsCVE-2020-1657HIGHJunos OS: SRX Series: An attacker sending spoofed packets to IPSec peers may cause a Denial of Service.EPSS 1.3%CVE-2019-0065MEDIUMJunos OS: MX Series: Denial of Service vulnerability in MS-PIC component on MS-MIC or MS-MPCEPSS 1.3%CVE-2018-0035MEDIUMJunos OS: QFX5200 and QFX10002: Unintended ONIE partition was shipped with certain Junos OS .bin and .iso imagesEPSS 1.3%CVE-2018-0009MEDIUMSRX Series: Firewall bypass vulnerability when UUID with leading zeros is configured.EPSS 1.3%CVE-2020-1665MEDIUMJunos OS: MX series/EX9200 Series: IPv6 DDoS protection does not work as expected.EPSS 1.3%CVE-2020-1628MEDIUMJunos OS: EX4300: Traffic from the network internal to the device (128.0.0.0) may be forwarded to egress interfacesEPSS 1.3%CVE-2020-1671HIGHJunos OS: Receipt of malformed DHCPv6 packets causes jdhcpd to crash.EPSS 1.3%CVE-2021-0207HIGHNFX250, NFX350, QFX5K Series, EX2300 Series, EX3400 Series, EX4300 Multigigabit, EX4600 Series: Certain genuine traffic received by the Junos OS device will be discarded instead of forwarded.EPSS 1.3%CVE-2018-0004MEDIUMJunos OS: Kernel Denial of Service VulnerabilityEPSS 1.2%CVE-2021-0231MEDIUMJunos OS: SRX, vSRX Series: J-Web Path traversal vulnerability in SRX and vSRX Series leads to information disclosure.EPSS 1.2%CVE-2019-0028HIGHJunos OS: RPD process crashes due to specific BGP peer restarts condition.EPSS 1.2%CVE-2020-1679HIGHJunos OS: PTX/QFX Series: Kernel Routing Table (KRT) queue stuck after packet sampling a malformed packet when the tunnel-observation mpls-over-udp configuration is enabled.EPSS 1.2%CVE-2018-0013MEDIUMJunos Space: Local File Inclusion VulnerabilityEPSS 1.2%CVE-2017-2308—An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to rEPSS 1.2%CVE-2021-0205MEDIUMJunos OS: MX Series: Dynamic filter fails to match IPv6 prefixEPSS 1.2%CVE-2020-1600MEDIUMJunos OS: A specific SNMP command can trigger a high CPU usage Denial of Service in the RPD daemon.EPSS 1.2%CVE-2017-2336CRITICALScreenOS: XSS vulnerability in ScreenOS FirewallEPSS 1.2%CVE-2021-31372HIGHJunos OS: J-Web allows a locally authenticated attacker to escalate their privileges to root.EPSS 1.2%CVE-2021-0275HIGHJunos OS: J-Web: Cross-site scripting attack allows an attacker to gain control of another users session.EPSS 1.2%CVE-2017-2325—A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authEPSS 1.2%