Vulnerabilidades en Juniper Networks

893 resultados

Análisis Vexday

Com 893 CVEs catalogadas e 7 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração de dispositivos Juniper Networks está 1,7× acima da média geral do catálogo, o que indica risco operacional elevado para organizações que dependem dessas soluções. A CVE mais crítica em exploração ativa no momento é CVE-2023-36846, com escore EPSS de 0,9421 — valor que sinaliza altíssima probabilidade de exploração em curto prazo e deve concentrar esforços imediatos de remediação. O tipo de falha mais recorrente, CWE-754 (verificação inadequada de condições excepcionais), aponta para uma fragilidade estrutural de tratamento de erros que tende a se manifestar em múltiplos componentes. Com 38 CVEs de severidade crítica, 4 com prova de conceito pública disponível e 27 vulnerabilidades surgidas nos últimos 90 dias, o ritmo de exposição recente exige monitoramento contínuo e priorização ativa de patches.

CVE-2026-21903HIGHJunos OS: Subscribing to telemetry sensors at scale causes all FPCs to crashEPSS 0.4%CVE-2019-0061HIGHJunos OS: Insecure management daemon (MGD) configuration may allow local privilege escalationEPSS 0.4%CVE-2024-47493HIGHJunos OS: MX Series: Trio-based FPCs: Continuous physical Interface flaps causes local FPC to crashEPSS 0.4%CVE-2019-0074MEDIUMJunos OS: NFX150 Series, QFX10K Series, EX9200 Series, MX Series, PTX Series: Path traversal vulnerability in NFX150 and NG-RE leads to information disclosure.EPSS 0.4%CVE-2022-22191MEDIUMJunos OS: EX4300: PFE Denial of Service (DoS) upon receipt of a flood of specific ARP trafficEPSS 0.4%CVE-2023-44198MEDIUMJunos OS: SRX Series and MX Series: SIP ALG doesn't drop specifically malformed retransmitted SIP packetsEPSS 0.4%CVE-2024-39526HIGHJunos OS and Junos OS Evolved: MX Series with MPC10/MPC11/LC9600, MX304, EX9200, PTX Series: Receipt of malformed DHCP packets causes interfaces to stop processing packetsEPSS 0.4%CVE-2019-0009MEDIUMJunos OS: EX2300 and EX3400: High disk I/O operations may disrupt the communication between RE and PFEEPSS 0.4%CVE-2024-47494HIGHJunos OS: Due to a race condition AgentD process causes a memory corruption and FPC resetEPSS 0.4%CVE-2020-1618MEDIUMJunos OS: EX and QFX Series: Console port authentication bypass vulnerabilityEPSS 0.3%CVE-2024-30397HIGHJunos OS: An invalid certificate causes a Denial of Service in the Internet Key Exchange (IKE) processEPSS 0.3%CVE-2025-59974CRITICALJunos Space Security Director: Persistent Cross-Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2019-0058HIGHJunos OS: SRX Series: A weakness in the Veriexec subsystem may allow privilege escalation.EPSS 0.3%CVE-2025-30656HIGHJunos OS: MX Series, SRX Series: Processing of specific SIP INVITE messages by the SIP ALG will lead to an FPC crashEPSS 0.3%CVE-2025-30649HIGHJunos OS: MX240, MX480, MX960 with SPC3: An attacker sending specific packets will cause a CPU utilization DoS.EPSS 0.3%CVE-2025-30658HIGHJunos OS: SRX Series: On devices with Anti-Virus enabled, malicious server responses will cause memory to leak ultimately causing forwarding to stopEPSS 0.3%CVE-2025-30660HIGHJunos OS: MX Series: Decapsulation of specific GRE packets leads to PFE resetEPSS 0.3%CVE-2025-30645HIGHJunos OS: SRX Series: Transmission of specific control traffic sent out of a DS-Lite tunnel results in flowd crashEPSS 0.3%CVE-2025-30651HIGHJunos OS and Junos OS Evolved: Receipt of a specific ICMPv6 packet causes a memory overrun leading to an rpd crashEPSS 0.3%CVE-2025-21594HIGHJunos OS: MX Series: In DS-lite and NAT scenario receipt of crafted IPv6 traffic causes port blockEPSS 0.3%

← anteriorpágina 31 / 45siguiente →