Vulnerabilidades en Juniper Networks

893 resultados

Análisis Vexday

Com 893 CVEs catalogadas e 7 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração de dispositivos Juniper Networks está 1,7× acima da média geral do catálogo, o que indica risco operacional elevado para organizações que dependem dessas soluções. A CVE mais crítica em exploração ativa no momento é CVE-2023-36846, com escore EPSS de 0,9421 — valor que sinaliza altíssima probabilidade de exploração em curto prazo e deve concentrar esforços imediatos de remediação. O tipo de falha mais recorrente, CWE-754 (verificação inadequada de condições excepcionais), aponta para uma fragilidade estrutural de tratamento de erros que tende a se manifestar em múltiplos componentes. Com 38 CVEs de severidade crítica, 4 com prova de conceito pública disponível e 27 vulnerabilidades surgidas nos últimos 90 dias, o ritmo de exposição recente exige monitoramento contínuo e priorização ativa de patches.

CVE-2025-30659HIGHJunos OS: SRX Series: A device configured for vector routing crashes when receiving malformed trafficEPSS 0.3%CVE-2025-21601HIGHJunos OS: SRX and EX Series, MX240, MX480, MX960, QFX5120 Series: When web management is enabled for specific services an attacker may cause a CPU spike by sending genuine packets to the deviceEPSS 0.3%CVE-2020-1643MEDIUMJunos OS: EX Series: RPD crash when executing specific "show ospf interface" commands from the CLI with OSPF authentication configuredEPSS 0.3%CVE-2026-33778HIGHJunos OS: SRX Series, MX Series: When a specifically malformed first ISAKMP packet is received kmd/iked crashesEPSS 0.3%CVE-2018-0012HIGHJunos Space: Local privilege escalation vulnerability in Junos SpaceEPSS 0.3%CVE-2019-0029HIGHJuniper ATP: Splunk credentials are in logged in clear textEPSS 0.3%CVE-2019-0021HIGHJuniper ATP: secret CLI inputs are logged to /var/log/syslog in clear textEPSS 0.3%CVE-2024-39528MEDIUMJunos OS and Junos OS Evolved: Concurrent deletion of a routing-instance and receipt of an SNMP request cause an RPD crashEPSS 0.3%CVE-2026-21921HIGHJunos OS and Junos OS Evolved: When telemetry collectors are frequently subscribing and unsubscribing to sensors chassisd or rpd will crashEPSS 0.3%CVE-2024-39538HIGHJunos OS Evolved: ACX7000 Series: When multicast traffic with a specific (S,G) is received evo-pfemand crashesEPSS 0.3%CVE-2024-39537MEDIUMJunos OS Evolved: ACX7000 Series: Ports which have been inadvertently exposed can be reached over the networkEPSS 0.3%CVE-2024-39541HIGHJunos OS and Junos OS Evolved: Inconsistent information in the TE database can lead to an rpd crashEPSS 0.3%CVE-2024-39543HIGHJunos OS and Junos OS Evolved: Receipt of a large RPKI-RTR PDU packet can cause rpd to crashEPSS 0.3%CVE-2026-33790HIGHJunos OS: SRX Series: In a NAT64 configuration, receipt of a specific, malformed ICMPv6 packet will cause the srxpfe process to crash and restart.EPSS 0.3%CVE-2019-0004HIGHJuniper ATP: API and device keys are logged in a world-readable permissions fileEPSS 0.3%CVE-2023-44188MEDIUMJunos OS: jkdsd crash due to multiple telemetry requestsEPSS 0.3%CVE-2024-39550HIGHJunos OS: MX Series with SPC3 line card: Port flaps causes rtlogd memory leak leading to Denial of ServiceEPSS 0.3%CVE-2024-39535HIGHJunos OS Evolved: ACX 7000 Series: When specific traffic is received in a VPLS scenario evo-pfemand crashesEPSS 0.3%CVE-2025-30657MEDIUMJunos OS: Processing of a specific BGP update causes the SRRD process to crashEPSS 0.3%CVE-2025-59964HIGHJunos OS: SRX4700: When forwarding-options sampling is enabled any traffic destined to the RE will cause the forwarding line card to crash and restartEPSS 0.3%

← anteriorpágina 32 / 45siguiente →