Vulnerabilidades en Juniper Networks

893 resultados

Análisis Vexday

Com 893 CVEs catalogadas e 7 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração de dispositivos Juniper Networks está 1,7× acima da média geral do catálogo, o que indica risco operacional elevado para organizações que dependem dessas soluções. A CVE mais crítica em exploração ativa no momento é CVE-2023-36846, com escore EPSS de 0,9421 — valor que sinaliza altíssima probabilidade de exploração em curto prazo e deve concentrar esforços imediatos de remediação. O tipo de falha mais recorrente, CWE-754 (verificação inadequada de condições excepcionais), aponta para uma fragilidade estrutural de tratamento de erros que tende a se manifestar em múltiplos componentes. Com 38 CVEs de severidade crítica, 4 com prova de conceito pública disponível e 27 vulnerabilidades surgidas nos últimos 90 dias, o ritmo de exposição recente exige monitoramento contínuo e priorização ativa de patches.

CVE-2019-0073MEDIUMJunos OS: PKI key pairs are exported with insecure file permissionsEPSS 0.3%CVE-2024-21617MEDIUMJunos OS: BGP flap on NSR-enabled devices causes memory leakEPSS 0.3%CVE-2024-47507MEDIUMJunos OS and Junos OS Evolved: BGP update message containing aggregator attribute with an ASN value of zero (0) is acceptedEPSS 0.3%CVE-2023-36833MEDIUMJunos OS Evolved: PTX10001-36MR, and PTX10004, PTX10008, PTX10016 with LC1201/1202: The aftman-bt process will crash in a MoFRR scenario after multiple link flapsEPSS 0.3%CVE-2023-22392MEDIUMJunos OS: PTX Series and QFX10000 Series: Received flow-routes which aren't installed as the hardware doesn't support them, lead to an FPC heap memory leakEPSS 0.3%CVE-2022-22238MEDIUMJunos OS and Junos OS Evolved: The rpd process will crash when a malformed incoming RESV message is processedEPSS 0.3%CVE-2024-21613MEDIUMJunos OS and Junos OS Evolved: A link flap causes patroot memory leak which leads to rpd crashEPSS 0.3%CVE-2025-13914HIGHApstra: SSH host key validation vulnerability for managed devicesEPSS 0.3%CVE-2025-59980MEDIUMJunos OS: When a user with the name ftp or anonymous is configured unauthenticated filesystem access is allowedEPSS 0.3%CVE-2024-21587MEDIUMJunos OS: MX Series: Memory leak in bbe-smgd process if BFD liveness detection for DHCP subscribers is enabledEPSS 0.3%CVE-2025-59968HIGHJunos Space Security Director: Insufficient authorization for sensitive resources in web interfaceEPSS 0.3%CVE-2024-30403HIGHJunos OS Evolved: When MAC learning happens, and an interface gets flapped, the PFE crashesEPSS 0.3%CVE-2024-47506HIGHJunos OS: SRX Series: A large amount of traffic being processed by ATP Cloud can lead to a PFE crashEPSS 0.3%CVE-2025-21591HIGHJunos OS: An unauthenticated adjacent attacker sending a malformed DHCP packet causes jdhcpd to crashEPSS 0.3%CVE-2025-52952HIGHJunos OS: MX Series with MPC-BUILTIN, MPC 1 through MPC 9: Receipt and processing of a malformed packet causes one or more FPCs to crashEPSS 0.3%CVE-2025-52953HIGHJunos OS and Junos OS Evolved: An unauthenticated adjacent attacker sending a valid BGP UPDATE packet forces a BGP session resetEPSS 0.3%CVE-2023-28979MEDIUMJunos OS: In a 6PE scenario upon receipt of a specific IPv6 packet an integrity check failsEPSS 0.3%CVE-2023-36834MEDIUMJunos OS: SRX 4600 and SRX 5000 Series: The receipt of specific genuine packets by SRXes configured for L2 transparency will cause a DoSEPSS 0.3%CVE-2025-52955HIGHJunos OS and Junos OS Evolved: When jflow/sflow is configured continuous logical interface flaps causes rpd crash and restartEPSS 0.3%CVE-2023-36848MEDIUMJunos OS: MX Series: The FPC will crash on receiving a malformed CFM packetEPSS 0.3%

← anteriorpágina 36 / 45siguiente →