Vulnerabilidades em Juniper Networks

893 resultados

Análise Vexday

Com 893 CVEs catalogadas e 7 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração de dispositivos Juniper Networks está 1,7× acima da média geral do catálogo, o que indica risco operacional elevado para organizações que dependem dessas soluções. A CVE mais crítica em exploração ativa no momento é CVE-2023-36846, com escore EPSS de 0,9421 — valor que sinaliza altíssima probabilidade de exploração em curto prazo e deve concentrar esforços imediatos de remediação. O tipo de falha mais recorrente, CWE-754 (verificação inadequada de condições excepcionais), aponta para uma fragilidade estrutural de tratamento de erros que tende a se manifestar em múltiplos componentes. Com 38 CVEs de severidade crítica, 4 com prova de conceito pública disponível e 27 vulnerabilidades surgidas nos últimos 90 dias, o ritmo de exposição recente exige monitoramento contínuo e priorização ativa de patches.

CVE-2022-22210MEDIUMJunos OS: QFX5000 Series and MX Series: An l2alm crash leading to an FPC crash can be observed in VxLAN scenarioEPSS 0.3%CVE-2023-22407MEDIUMJunos OS and Junos OS Evolved: An RPD crash can happen due to an MPLS TE tunnel configuration change on a directly connected routerEPSS 0.3%CVE-2023-22405MEDIUMJunos OS: QFX5k Series, EX46xx Series: MAC limiting feature stops working after PFE restart or device rebootEPSS 0.3%CVE-2024-30380HIGHJunos OS and Junos OS Evolved: l2cpd crash upon receipt of a specific TLVEPSS 0.3%CVE-2023-22414MEDIUMJunos OS: PTX Series and QFX10000 Series: An FPC memory leak is observed when specific EVPN VXLAN Multicast packets are processedEPSS 0.3%CVE-2023-22406MEDIUMJunos OS and Junos OS Evolved: A memory leak which will ultimately lead to an rpd crash will be observed when a peer interface flaps continuously in a Segment Routing scenario using OSPFEPSS 0.3%CVE-2017-10613MEDIUMJunos OS: A kernel hang may occur due to a specific loopback filter action commandEPSS 0.3%CVE-2022-22226MEDIUMJunos OS: EX4300-MP, EX4600, QFX5000 Series: In VxLAN scenarios specific packets processed cause a memory leak leading to a PFE crashEPSS 0.3%CVE-2023-28959MEDIUMJunos OS: QFX10002: PFE wedges and restarts upon receipt of specific malformed packetsEPSS 0.3%CVE-2023-28970MEDIUMJunos OS: JRR200: Kernel crash upon receipt of a specific packetEPSS 0.3%CVE-2021-0204HIGHJunos OS: dexp Local Privilege Escalation vulnerabilities in SUID binariesEPSS 0.3%CVE-2023-28974HIGHJunos OS: MX Series: In a BBE scenario upon receipt of specific malformed packets from subscribers the process bbe-smgd will crashEPSS 0.3%CVE-2023-28981MEDIUMJunos OS and Junos OS Evolved: If malformed IPv6 router advertisements are received, memory corruption will occur which causes an rpd crashEPSS 0.3%CVE-2020-1623MEDIUMJunos OS Evolved: ev.ops file may leak sensitive informationEPSS 0.3%CVE-2020-1622MEDIUMJunos OS Evolved: EvoSharedObjStore may leak sensitive informationEPSS 0.3%CVE-2020-1624MEDIUMJunos OS Evolved: objmon logs may leak sensitive informationEPSS 0.3%CVE-2022-22230MEDIUMJunos OS and Junos OS Evolved: RPD crash upon receipt of specific OSPFv3 LSAsEPSS 0.3%CVE-2025-52960HIGHJunos OS: SRX Series and MX Series: Receipt of specific SIP packets in a high utilization situation causes a flowd/mspmand crashEPSS 0.3%CVE-2020-1620MEDIUMJunos OS Evolved: Configd leaks hashes via log file and is world readableEPSS 0.3%CVE-2020-1621MEDIUMJunos OS Evolved: Configd leaks hashes via stream and is world readableEPSS 0.3%

← anteriorpágina 34 / 45próxima →