Vulnerabilidades em Juniper Networks

893 resultados
Análise Vexday

Com 893 CVEs catalogadas e 7 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração de dispositivos Juniper Networks está 1,7× acima da média geral do catálogo, o que indica risco operacional elevado para organizações que dependem dessas soluções. A CVE mais crítica em exploração ativa no momento é CVE-2023-36846, com escore EPSS de 0,9421 — valor que sinaliza altíssima probabilidade de exploração em curto prazo e deve concentrar esforços imediatos de remediação. O tipo de falha mais recorrente, CWE-754 (verificação inadequada de condições excepcionais), aponta para uma fragilidade estrutural de tratamento de erros que tende a se manifestar em múltiplos componentes. Com 38 CVEs de severidade crítica, 4 com prova de conceito pública disponível e 27 vulnerabilidades surgidas nos últimos 90 dias, o ritmo de exposição recente exige monitoramento contínuo e priorização ativa de patches.

CVE-2025-60010MEDIUMJunos OS and Junos OS Evolved: Device allows login for user with expired passwordEPSS 0.2%CVE-2026-33793HIGHJunos OS and Junos OS Evolved: When an unsigned Python op script configuration is present, a local low privileged user can compromise the systemEPSS 0.2%CVE-2022-22251HIGHcSRX Series: Storing Passwords in a Recoverable Format and software permissions issues allows a local attacker to elevate privilegesEPSS 0.2%CVE-2024-39532MEDIUMJunos OS and Junos OS Evolved: Confidential information in logs can be accessed by another userEPSS 0.2%CVE-2025-21596MEDIUMJunos OS: SRX1500,SRX4100,SRX4200: Execution of low-privileged CLI command results in chassisd crashEPSS 0.2%CVE-2019-0072MEDIUMSBR Carrier: A vulnerability in the identity and access management certificate generation procedure allows a local attacker to gain access to confidential information.EPSS 0.2%CVE-2024-21615MEDIUMJunos OS and Junos OS Evolved: A low-privileged user can access confidential informationEPSS 0.2%CVE-2023-36836MEDIUMJunos OS and Junos OS Evolved: In a MoFRR scenario an rpd core may be observed when a low privileged CLI command is executedEPSS 0.2%CVE-2025-52954HIGHJunos OS Evolved: A low-privileged user can execute arbitrary Junos commands and modify the configuration, thereby compromising the systemEPSS 0.1%CVE-2024-39511MEDIUMJunos OS: The 802.1X Authentication Daemon crashes on running a specific commandEPSS 0.1%CVE-2023-28973HIGHJunos OS Evolved: The 'sysmanctl' shell command allows a local user to gain access to some administrative actions EPSS 0.1%CVE-2023-44201MEDIUMJunos OS and Junos OS Evolved: A local attacker can retrieve sensitive information and elevate privileges on the device to an authorized user. EPSS 0.1%CVE-2025-30654MEDIUMJunos OS and Junos OS Evolved: A local, low privileged user can access sensitive informationEPSS 0.1%CVE-2024-39513MEDIUMJunos OS Evolved: Execution of a specific CLI command will cause a crash in the AFT managerEPSS 0.1%CVE-2026-33785MEDIUMJunos OS: MX Series: Missing Authorization for specific 'request' CLI commands in a JDM/CSDS scenarioEPSS 0.1%CVE-2025-30650HIGHJunos OS: Privileged local user can gain access to a Linux-based FPC as rootEPSS 0.1%CVE-2024-30406MEDIUMJunos OS Evolved: ACX Series with Paragon Active Assurance Test Agent: A local high privileged attacker can recover other administrators credentialsEPSS 0.1%CVE-2025-52963MEDIUMJunos OS: A low-privileged user can disable an interfaceEPSS 0.1%CVE-2025-30652MEDIUMJunos OS and Junos OS Evolved: Executing a specific CLI command when asregex-optimized is configured causes an rpd crashEPSS 0.1%CVE-2025-60007MEDIUMJunos OS: A specifically crafted 'show chassis' command causes chassisd to crashEPSS 0.1%