Vulnerabilidades em Juniper Networks
893 resultadosCVE-2024-39547HIGHJunos OS and Junos OS Evolved: cRPD: Receipt of crafted TCP traffic can trigger high CPU utilizationEPSS 0.9%CVE-2019-0016MEDIUMJunos Space: Authenticated user able to delete devices without delete device privilegesEPSS 0.9%CVE-2021-0278HIGHJunos OS: J-Web allows a locally authenticated attacker to escalate their privileges to root.EPSS 0.9%CVE-2017-10623HIGHJunos Space: Insufficient verification of cluster messagesEPSS 0.9%CVE-2021-0263MEDIUMJunos OS: PTX Series: Denial of Service in packet processing due to heavy route churn when J-Flow sampling is enabledEPSS 0.9%CVE-2018-0003MEDIUMJunos OS: A crafted MPLS packet may lead to a kernel crashEPSS 0.9%CVE-2024-21620HIGHJunos OS: SRX Series and EX Series: J-Web doesn't sufficiently sanitize input to prevent XSSEPSS 0.9%CVE-2022-22185HIGHJunos OS: SRX Series: Denial of service vulnerability in flowd daemon upon receipt of a specific fragmented packetEPSS 0.9%CVE-2022-22190HIGHParagon Active Assurance Control Center: Information disclosure vulnerability in crafted URLEPSS 0.9%CVE-2021-0260HIGHJunos OS: SNMP fails to properly perform authorization checks on incoming received SNMP requests.EPSS 0.9%CVE-2017-10611MEDIUMJunos: EX Series PFE and MX MPC7E/8E/9E PFE crash when fetching interface stats with 'extended-statistics' enabledEPSS 0.9%CVE-2024-21619MEDIUMJunos OS: SRX Series and EX Series: J-Web - unauthenticated access to temporary files containing sensitive informationEPSS 0.9%CVE-2020-1607HIGHJunos OS: Cross-Site Scripting (XSS) in J-WebEPSS 0.9%CVE-2021-0266HIGHcSRX: Use of Hard-coded Cryptographic Keys allows an attacker to take control of the device through device management services.EPSS 0.9%CVE-2017-10604MEDIUMJunos OS: SRX Series: Cluster configuration sync failures occur if the root user account is locked outEPSS 0.9%CVE-2020-1676HIGHJuniper Networks Mist Cloud UI: SAML authentication response handling vulnerability.EPSS 0.9%CVE-2021-0226HIGHJunos OS Evolved: The IPv6 BGP session will flap due to receipt of a specific IPv6 packetEPSS 0.9%CVE-2021-0269HIGHJunos OS: J-Web can be compromised through reflected client-side HTTP parameter pollution attacks.EPSS 0.9%CVE-2022-22209HIGHJunos OS: RIB and PFEs can get out of sync due to a memory leak caused by interface flaps or route churnEPSS 0.9%CVE-2019-0041MEDIUMJunos OS: EX4300-MP Series: IP transit traffic can reach the control plane via loopback interface.EPSS 0.9%