Vulnerabilidades em Juniper Networks
893 resultadosCVE-2021-31356HIGHJunos OS Evolved: Multiple shell-injection vulnerabilities in EVO UI wrapper scriptsEPSS 0.9%CVE-2018-0047HIGHJunos Space Security Director: XSS vulnerability in web administrationEPSS 0.9%CVE-2022-22198HIGHJunos OS: MX MS-MPC or MS-MIC, or SRX SPC crashes if it receives a SIP message with a specific contact header formatEPSS 0.9%CVE-2021-0268HIGHJunos OS: J-Web has an Improper Neutralization of CRLF Sequences in its HTTP Headers which allows an attacker to carry out multiple types of attacks.EPSS 0.9%CVE-2017-2307—A reflected cross site scripting vulnerability in the administrative interface of Juniper Networks Junos Space versions prior to 16.1R1 may EPSS 0.9%CVE-2020-1604MEDIUMJunos OS: EX4300/EX4600/QFX3500/QFX5100 Series: Stateless IP firewall filter may fail to evaluate certain packetsEPSS 0.8%CVE-2021-0218HIGHJunos OS: Command injection vulnerability in license-check daemonEPSS 0.8%CVE-2021-0236MEDIUMJunos OS: A specific BGP VPNv6 flowspec message causes routing protocol daemon (rpd) process to crash with a core.EPSS 0.8%CVE-2021-31350HIGHJunos OS and Junos OS Evolved: Privilege escalation vulnerability in Juniper Extension Toolkit (JET)EPSS 0.8%CVE-2020-1605HIGHJunos OS and Junos OS Evolved: A vulnerability in JDHCPD allows an attacker to send crafted IPv4 packets and arbitrarily execute commands on the target device.EPSS 0.8%CVE-2018-0011MEDIUMJunos Space: Reflected XSS vulnerability in Junos Space management interfaceEPSS 0.8%CVE-2022-22169MEDIUMJunos OS and Junos OS Evolved: OSPFv3 session might go into INIT state upon receipt of multiple crafted packets from a trusted neighbor device.EPSS 0.8%CVE-2021-0281MEDIUMJunos OS and Junos OS Evolved: Specific packets can trigger rpd crash when BGP Origin Validation is configured with RPKIEPSS 0.8%CVE-2021-31371MEDIUMJunos OS: QFX5000 Series: Traffic from the network internal to the device (128.0.0.0) may be forwarded to egress interfaces.EPSS 0.8%CVE-2019-0015MEDIUMJunos OS: SRX Series: Deleted dynamic VPN users are allowed to establish VPN connections until rebootEPSS 0.8%CVE-2021-31352MEDIUMSRC Series: NETCONF over SSH allows negotiation of weak ciphersEPSS 0.8%CVE-2020-1637HIGHJunos OS: SRX Series: Unified Access Control (UAC) bypass vulnerabilityEPSS 0.8%CVE-2018-0059MEDIUMScreenOS: Stored Cross-Site Scripting (XSS) vulnerabilityEPSS 0.8%CVE-2021-0215MEDIUMJunos OS: EX Series, QFX Series, SRX Branch Series, MX Series: Memory leak in packet forwarding engine due to 802.1X authenticator port interface flapsEPSS 0.8%CVE-2017-2309—On Juniper Networks Junos Space versions prior to 16.1R1 when certificate based authentication is enabled for the Junos Space cluster, some EPSS 0.8%