Vulnerabilidades en Juniper Networks

893 resultados
Análisis Vexday

Com 893 CVEs catalogadas e 7 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração de dispositivos Juniper Networks está 1,7× acima da média geral do catálogo, o que indica risco operacional elevado para organizações que dependem dessas soluções. A CVE mais crítica em exploração ativa no momento é CVE-2023-36846, com escore EPSS de 0,9421 — valor que sinaliza altíssima probabilidade de exploração em curto prazo e deve concentrar esforços imediatos de remediação. O tipo de falha mais recorrente, CWE-754 (verificação inadequada de condições excepcionais), aponta para uma fragilidade estrutural de tratamento de erros que tende a se manifestar em múltiplos componentes. Com 38 CVEs de severidade crítica, 4 com prova de conceito pública disponível e 27 vulnerabilidades surgidas nos últimos 90 dias, o ritmo de exposição recente exige monitoramento contínuo e priorização ativa de patches.

CVE-2022-22233MEDIUMJunos OS and Junos OS Evolved: In an SR to LDP interworking scenario, with SRMS, when a specific low privileged command is issued on an ABR rpd will crashEPSS 0.2%CVE-2023-28980MEDIUMJunos OS and Junos OS Evolved: In a BGP rib sharding scenario an rpd crash will happen shortly after a specific CLI command is issuedEPSS 0.2%CVE-2023-22398MEDIUMJunos OS and Junos OS Evolved: RPD might crash when MPLS ping is performed on BGP LSPsEPSS 0.2%CVE-2023-44187MEDIUMJunos OS Evolved: 'file copy' CLI command can disclose password to shell usersEPSS 0.2%CVE-2025-59957HIGHJunos OS: EX4600 Series and QFX5000 Series: An attacker with physical access can open a persistent backdoorEPSS 0.2%CVE-2025-21592MEDIUMJunos OS: SRX Series: Low privileged user able to access highly sensitive information on file systemEPSS 0.2%CVE-2024-30384MEDIUMJunos OS: EX4300 Series: If a specific CLI command is issued PFE crashes will occurEPSS 0.2%CVE-2025-30661HIGHJunos OS: Low-privileged user can cause script to run as root, leading to privilege escalationEPSS 0.2%CVE-2023-44194HIGHJunos OS: An unauthenticated attacker with local access to the device can create a backdoor with root privilegesEPSS 0.2%CVE-2023-44190MEDIUMJunos OS Evolved: PTX10001, PTX10004, PTX10008, PTX10016: MAC address validation bypass vulnerabilityEPSS 0.2%CVE-2023-28960HIGHJunos OS Evolved: Docker repository is world-writeable, allowing low-privileged local user to inject files into Docker containersEPSS 0.2%CVE-2021-0298MEDIUMJunos OS Evolved: PTX10003, PTX10008: picd core while executing the "show chassis pic" command under certain conditionsEPSS 0.2%CVE-2026-33797HIGHJunos OS and Junos OS Evolved: An attacker sending a specific genuine BGP packet causes a BGP resetEPSS 0.2%CVE-2026-33781HIGHJunos OS: EX Series, QFX Series: In a VXLAN scenario when specific control protocol packets are received, memory leaks and eventually no traffic is passedEPSS 0.2%CVE-2023-44193MEDIUMJunos OS: MX Series: An FPC crash is observed when CFM is enabled in a VPLS scenario and a specific LDP related command is runEPSS 0.2%CVE-2023-44177MEDIUMJunos OS and Junos OS Evolved: Stack overflow vulnerability in CLI command processingEPSS 0.2%CVE-2023-44176MEDIUMJunos OS : Stack overflow vulnerability in CLI command processingEPSS 0.2%CVE-2023-44178MEDIUMJunos OS : Stack overflow vulnerability in CLI command processingEPSS 0.2%CVE-2023-28966HIGHJunos OS Evolved: Local low-privileged user with shell access can execute CLI commands as rootEPSS 0.2%CVE-2025-59962MEDIUMJunos OS and Junos OS Evolved: With BGP sharding enabled, change in indirect next-hop can cause RPD crashEPSS 0.2%