Home/Product/juniper junos
Product

juniper junos

500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-33797
all versions
An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent a
7.4HIGH
 CVE-2026-33793
< 22.4
An Execution with Unnecessary Privileges vulnerability in the User Interface (UI) of Juniper Networks Junos OS and Junos OS Evolv
7.8HIGH
 CVE-2026-33791
< 22.4
An OS Command Injection vulnerability in the CLI processing of Juniper Networks Junos OS and Junos OS Evolved allows a local, high
6.7MEDIUM
 CVE-2026-33790
< 21.2
An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow daemon (flowd) of Juniper Networks Junos OS on S
7.5HIGH
 CVE-2026-33787
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon (chassisd) of Juniper Networks
5.5MEDIUM
 CVE-2026-33786
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon (chassisd) of Juniper Networks
5.5MEDIUM
 CVE-2026-33785
all versions
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with
8.8HIGH
 CVE-2026-33782
< 22.4
A Missing Release of Memory after Effective Lifetime vulnerability in the DHCP daemon (jdhcpd) of Juniper Networks Junos OS on MX
6.5MEDIUM
 CVE-2026-33781
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper Networks Ju
6.5MEDIUM
 CVE-2026-33780
< 22.4
A Missing Release of Memory after Effective Lifetime vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Netw
6.5MEDIUM
 CVE-2026-33779
< 22.4
An Improper Following of a Certificate's Chain of Trust vulnerability in J-Web of Juniper Networks Junos OS on SRX Series allows a
6.5MEDIUM
 CVE-2026-33778
< 22.4
An Improper Validation of Syntactic Correctness of Input vulnerability in the IPsec library used by kmd and iked of Juniper Netwo
7.5HIGH
 CVE-2026-33776
< 22.4
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low pr
5.5MEDIUM
 CVE-2026-33775
< 22.4
A Missing Release of Memory after Effective Lifetime vulnerability in the BroadBand Edge subscriber management daemon (bbe-smgd) o
6.5MEDIUM
 CVE-2026-33773
all versions
An Incorrect Initialization of Resource vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on specif
5.8MEDIUM
 CVE-2026-21919
all versions
An Incorrect Synchronization vulnerability in the management daemon (mgd) of Juniper Networks Junos OS and Junos OS Evolved allows
6.5MEDIUM
 CVE-2026-21916
< 23.2
A UNIX Symbolic Link (Symlink) Following vulnerability in the CLI of Juniper Networks Junos OS allows a local, authenticated attac
7.3HIGH
 CVE-2026-21921
< 22.4
A Use After Free vulnerability in the chassis daemon (chassisd) of Juniper Networks Junos OS and Junos OS Evolved allows a network
6.5MEDIUM
 CVE-2026-21920
all versions
An Unchecked Return Value vulnerability in the DNS module of Juniper Networks Junos OS on SRX Series allows an unauthenticated, ne
7.5HIGH
 CVE-2026-21918
< 22.4
A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX and MX Series allows an unau
7.5HIGH
 CVE-2026-21917
all versions
An Improper Validation of Syntactic Correctness of Input vulnerability in the Web-Filtering module of Juniper Networks Junos OS on
7.5HIGH
 CVE-2026-21914
< 22.4
An Improper Locking vulnerability in the GTP plugin of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-
7.5HIGH
 CVE-2026-21913
all versions
An Incorrect Initialization of Resource vulnerability in the Internal Device Manager (IDM) of Juniper Networks Junos OS on EX4000
7.5HIGH
 CVE-2026-21912
< 21.2
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in the method to collect FPC Ethernet firmware statistics of Ju
5.5MEDIUM
 CVE-2026-21910
< 21.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper Networks Ju
6.5MEDIUM
 CVE-2026-21909
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon (rpd) Juniper Networks Junos OS
6.5MEDIUM
 CVE-2026-21908
all versions
A Use After Free vulnerability was identified in the 802.1X authentication daemon (dot1xd) of Juniper Networks Junos OS and Junos
7.1HIGH
 CVE-2026-21906
< 21.4
An Improper Handling of Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on
7.5HIGH
 CVE-2026-21905
< 21.2
A Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in the SIP application layer gateway (ALG) of Juniper Netwo
7.5HIGH
 CVE-2026-21903
< 22.4
A Stack-based Buffer Overflow vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS allows a network-ba
6.5MEDIUM
 CVE-2026-0203
< 21.2
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS allows an unauthent
6.5MEDIUM
 CVE-2025-60011
< 22.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Jun
5.8MEDIUM
 CVE-2025-60007
< 22.4
A NULL Pointer Dereference vulnerability in the chassis daemon (chassisd) of Juniper Networks Junos OS on MX, SRX and EX Series al
5.5MEDIUM
 CVE-2025-60003
< 22.4
A Buffer Over-read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an
7.5HIGH
 CVE-2025-59961
< 21.2
An Incorrect Permission Assignment for Critical Resource vulnerability in the Juniper DHCP daemon (jdhcpd) of Juniper Networks Jun
5.5MEDIUM
 CVE-2025-59960
< 21.2
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Juniper DHCP service (jdhcpd) of Juniper Networks Jun
7.4HIGH
 CVE-2025-59959
< 22.4
An Untrusted Pointer Dereference vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evol
5.5MEDIUM
 CVE-2025-60010
< 22.4
A password aging vulnerability in the RADIUS client of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated, net
5.4MEDIUM
 CVE-2025-60004
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Jun
7.5HIGH
 CVE-2025-59980
< 22.4
An Authentication Bypass by Primary Weakness in the FTP server of Juniper Networks Junos OS allows an unauthenticated, network-ba
6.5MEDIUM
 CVE-2025-59964
all versions
A Use of Uninitialized Resource vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX4700 devic
7.5HIGH
 CVE-2025-59962
< 21.4
An Access of Uninitialized Pointer vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Ev
5.3MEDIUM
 CVE-2025-59957
< 21.4
An Origin Validation Error vulnerability in an insufficient protected file of Juniper Networks Junos OS on EX4600 Series and QFX5
6.8MEDIUM
 CVE-2025-52960
< 22.4
A Buffer Copy without Checking Size of Input vulnerability in the Session Initialization Protocol (SIP) ALG of Juniper Networks
5.9MEDIUM
 CVE-2025-6549
< 21.4
An Incorrect Authorization vulnerability in the web server of Juniper Networks Junos OS on SRX Series allows an unauthenticated, n
6.5MEDIUM
 CVE-2025-52989
< 22.2
An Improper Neutralization of Delimiters vulnerability in the UI of Juniper Networks Junos OS and Junos OS Evolved allows a local,
5.1MEDIUM
 CVE-2025-52988
< 21.2
An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in the CLI of Juniper
6.7MEDIUM
 CVE-2025-52986
< 21.2
A Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos
5.5MEDIUM
 CVE-2025-52984
< 21.2
A NULL Pointer Dereference vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved al
5.9MEDIUM
 CVE-2025-52983
< 22.2
A UI Discrepancy for Security Feature vulnerability in the UI of Juniper Networks Junos OS on VM Host systems allows a network-ba
7.2HIGH
 CVE-2025-52982
< 21.2
An Improper Resource Shutdown or Release vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC allows
5.9MEDIUM
 CVE-2025-52981
< 21.2
An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow processing daemon (flowd) of Juniper Networks Ju
7.5HIGH
 CVE-2025-52980
all versions
A Use of Incorrect Byte Ordering vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS on SRX300 Ser
7.5HIGH
 CVE-2025-52964
< 21.4
A Reachable Assertion vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows
6.5MEDIUM
 CVE-2025-52963
< 21.2
An Improper Access Control vulnerability in the User Interface (UI) of Juniper Networks Junos OS allows a local, low-privileged at
5.5MEDIUM
 CVE-2025-52958
< 22.2
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows
5.3MEDIUM
 CVE-2025-52955
< 21.2
An Incorrect Calculation of Buffer Size vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos
6.5MEDIUM
 CVE-2025-52953
< 21.2
An Expected Behavior Violation vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolv
6.5MEDIUM
 CVE-2025-52952
< 22.2
An Out-of-bounds Write vulnerability in the connectivity fault management (CFM) daemon of Juniper Networks Junos OS on MX Series w
6.5MEDIUM
 CVE-2025-52951
< 21.2
A Protection Mechanism Failure vulnerability in kernel filter processing of Juniper Networks Junos OS allows an attacker sending I
5.8MEDIUM
 CVE-2025-52949
< 21.4
An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon (rpd) of Juniper Networks Juno
6.5MEDIUM
 CVE-2025-52948
< 21.2
An Improper Handling of Exceptional Conditions vulnerability in Berkeley Packet Filter (BPF) processing of Juniper Networks Junos
5.9MEDIUM
 CVE-2025-52947
< 21.2
An Improper Handling of Exceptional Conditions vulnerability in route processing of Juniper Networks Junos OS on specific end-of-l
6.5MEDIUM
 CVE-2025-52946
< 21.2
A Use After Free vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Juniper Networks Junos OS Evo
7.5HIGH
 CVE-2025-30661
all versions
An Incorrect Permission Assignment for Critical Resource vulnerability in line card script processing of Juniper Networks Junos OS
7.3HIGH
 CVE-2025-30660
< 21.2
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Ju
7.5HIGH
 CVE-2025-30659
all versions
An Improper Handling of Length Parameter Inconsistency vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Jun
7.5HIGH
 CVE-2025-30658
< 21.2
A Missing Release of Memory after Effective Lifetime vulnerability in the Anti-Virus processing of Juniper Networks Junos OS on SR
7.5HIGH
 CVE-2025-30657
< 21.2
An Improper Encoding or Escaping of Output vulnerability in the Sampling Route Record Daemon (SRRD) of Juniper Networks Junos OS a
5.3MEDIUM
 CVE-2025-30656
< 21.2
An Improper Handling of Additional Special Element vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos O
7.5HIGH
 CVE-2025-30655
< 21.2
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Jun
5.5MEDIUM
 CVE-2025-30654
< 21.4
An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the User Interface (UI) of Juniper Networks Junos O
5.5MEDIUM
 CVE-2025-30653
< 22.2
An Expired Pointer Dereference vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved al
6.5MEDIUM
 CVE-2025-30652
< 21.2
An Improper Handling of Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos OS and Jun
5.5MEDIUM
 CVE-2025-30651
< 21.2
A Buffer Access with Incorrect Length Value vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Ju
7.5HIGH
 CVE-2025-30649
< 22.2
An Improper Input Validation vulnerability in the syslog stream TCP transport of Juniper Networks Junos OS on MX240, MX480 and M
7.5HIGH
 CVE-2025-30648
< 21.2
An Improper Input Validation vulnerability in the Juniper DHCP Daemon (jdhcpd) of Juniper Networks Junos OS and Junos OS Evolved
7.4HIGH
 CVE-2025-30647
< 21.2
A Missing Release of Memory after Effective Lifetime vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos
6.5MEDIUM
 CVE-2025-30646
< 21.2
A Signed to Unsigned Conversion Error vulnerability in the Layer 2 Control Protocol daemon (l2cpd) of Juniper Networks Junos OS an
6.5MEDIUM
 CVE-2025-30645
< 21.2
A NULL Pointer Dereference vulnerability in the flow daemon (flowd) of Juniper Networks Junos OS on SRX Series allows an attacker
7.5HIGH
 CVE-2025-30644
< 21.4
A Heap-based Buffer Overflow vulnerability in the flexible PIC concentrator (FPC) of Juniper Networks Junos OS on EX2300, EX3400,
7.5HIGH
 CVE-2025-21601
<= 21.4
An Improper Following of Specification by Caller vulnerability in web management (J-Web, Captive Portal, 802.1X, Juniper Secure Co
7.5HIGH
 CVE-2025-21597
< 20.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos O
5.3MEDIUM
 CVE-2025-21595
< 21.2
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Juno
6.5MEDIUM
 CVE-2025-21594
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the pfe (packet forwarding engine) of Juniper Networks Ju
7.5HIGH
 CVE-2025-21591
all versions
A Buffer Access with Incorrect Length Value vulnerability in the jdhcpd daemon of Juniper Networks Junos OS, when DHCP snooping is
7.4HIGH
 CVE-2025-21590
<= 21.2
An Improper Isolation or Compartmentalization vulnerability in the kernel of Juniper Networks Junos OS allows a local attacker wit
4.4MEDIUM
 CVE-2024-39564
< 21.2
This is a similar, but different vulnerability than the issue reported as CVE-2024-39549. A double-free vulnerability in the ro
7.5HIGH
 CVE-2025-21598
all versions
An Out-of-bounds Read vulnerability in Juniper Networks Junos OS and Junos OS Evolved's routing protocol daemon (rpd) allows an u
7.5HIGH
 CVE-2025-21602
all versions
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and
6.5MEDIUM
 CVE-2025-21600
all versions
An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved all
6.5MEDIUM
 CVE-2025-21596
< 21.4
An Improper Handling of Exceptional Conditions vulnerability in the command-line processing of Juniper Networks Junos OS on SRX150
5.5MEDIUM
 CVE-2025-21593
< 21.2
An Improper Control of a Resource Through its Lifetime vulnerability in the routing protocol daemon (rpd) of Juniper Networks Juno
6.5MEDIUM
 CVE-2025-21592
< 21.4
An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the command-line interface (CLI) of Juniper Networ
5.5MEDIUM
 CVE-2024-47507
< 21.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Jun
5.8MEDIUM
 CVE-2024-47506
< 21.3
A Deadlock vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticate
5.9MEDIUM
 CVE-2024-47504
all versions
An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine (pfe) Juniper Networks Junos OS on
7.5HIGH
 CVE-2024-47503
< 21.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow processing daemon (flowd) of Juniper Networks Ju
6.5MEDIUM
 CVE-2024-47501
< 21.2
A NULL Pointer Dereference vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on MX304, MX with M
5.5MEDIUM
 CVE-2024-47499
< 21.2
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Jun
7.5HIGH
 CVE-2024-47497
< 21.4
An Uncontrolled Resource Consumption vulnerability in the http daemon (httpd) of Juniper Networks Junos OS on SRX Series, QFX Seri
7.5HIGH
 CVE-2024-47496
< 21.4
A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS allows a local, low-p
5.5MEDIUM
 CVE-2024-47494
< 21.4
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in the AgentD process of Juniper Networks Junos OS allows an att
5.9MEDIUM
 CVE-2024-47493
< 21.2
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of the Juniper Networks J
6.5MEDIUM
 CVE-2024-47491
< 21.4
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and
5.9MEDIUM
 CVE-2024-39527
< 21.4
An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the command-line interface (CLI) of Juniper Networ
5.5MEDIUM
 CVE-2024-39526
< 21.2
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with M
6.5MEDIUM
 CVE-2024-39525
< 21.2
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS an
7.5HIGH
 CVE-2024-39516
< 21.4
An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved al
7.5HIGH
 CVE-2024-39515
< 21.4
An Improper Validation of Consistency within Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS
7.5HIGH
 CVE-2024-39552
< 20.4
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and
7.5HIGH
 CVE-2024-39551
all versions
An Uncontrolled Resource Consumption vulnerability in the H.323 ALG (Application Layer Gateway) of Juniper Networks Junos OS on
7.5HIGH
 CVE-2024-39550
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the rtlogd process of Juniper Networks Junos OS on MX Serie
6.5MEDIUM
 CVE-2024-39549
<= 21.1
A Missing Release of Memory after Effective Lifetime vulnerability in the routing process daemon (rpd) of Juniper Networks Junos
7.5HIGH
 CVE-2024-39545
< 21.2
An Improper Check for Unusual or Exceptional Conditions vulnerability in the IKE daemon (iked) of Juniper Networks Junos OS on
7.5HIGH
 CVE-2024-39543
< 21.2
A Buffer Copy without Checking Size of Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and
6.5MEDIUM
 CVE-2024-39542
all versions
An Improper Validation of Syntactic Correctness of Input vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks J
7.5HIGH
 CVE-2024-39541
all versions
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and
6.5MEDIUM
 CVE-2024-39540
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Ju
7.5HIGH
 CVE-2024-39539
< 21.2
A Missing Release of Memory after Effective Lifetime vulnerability in Juniper Networks Junos OS on MX Series allows an unauthentic
5.3MEDIUM
 CVE-2024-39536
< 21.2
A Missing Release of Memory after Effective Lifetime vulnerability in the Periodic Packet Management Daemon (ppmd) of Juniper Netw
5.3MEDIUM
 CVE-2024-39533
< 21.2
An Unimplemented or Unsupported Feature in the UI vulnerability in Juniper Networks Junos OS on QFX5000 Series and EX4600 Series a
5.8MEDIUM
 CVE-2024-39532
< 21.2
An Insertion of Sensitive Information into Log File vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local
6.3MEDIUM
 CVE-2024-39530
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis management daemon (chassisd) of Juniper Netwo
7.5HIGH
 CVE-2024-39529
< 21.4
A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on S
7.5HIGH
 CVE-2024-39528
< 21.2
A Use After Free vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an a
5.7MEDIUM
 CVE-2024-39565
< 21.2
An Improper Neutralization of Data within XPath Expressions ('XPath Injection') vulnerability in J-Web shipped with Juniper Networ
8.8HIGH
 CVE-2024-39561
< 21.2
An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow daemon (flowd) of Juniper Networks Junos OS on
5.8MEDIUM
 CVE-2024-39560
< 20.4
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and
6.5MEDIUM
 CVE-2024-39558
< 20.4
An Unchecked Return Value vulnerability in the Routing Protocol Daemon (rpd) on Juniper Networks Junos OS and Juniper Networks Jun
6.5MEDIUM
 CVE-2024-39556
< 21.4
A Stack-Based Buffer Overflow vulnerability in Juniper Networks Junos OS and Juniper Networks Junos OS Evolved may allow a local,
6.4MEDIUM
 CVE-2024-39555
< 21.4
An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and
7.5HIGH
 CVE-2024-39554
>= 21.1 and < 21.2
A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability the Routing Protocol
5.9MEDIUM
 CVE-2024-39518
all versions
A Heap-based Buffer Overflow vulnerability in the telemetry sensor process (sensord) of Juniper Networks Junos OS on MX240, MX480,
7.5HIGH
 CVE-2024-39517
< 21.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Layer 2 Address Learning Daemon (l2ald) on Juniper N
6.5MEDIUM
 CVE-2024-39514
< 20.4
An Improper Check or Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Jun
6.5MEDIUM
 CVE-2024-39511
< 20.4
An Improper Input Validation vulnerability in the 802.1X Authentication (dot1x) Daemon of Juniper Networks Junos OS allows a local
5.5MEDIUM
 CVE-2024-21586
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Ju
7.5HIGH
 CVE-2024-30380
< 20.4
An Improper Handling of Exceptional Conditions vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an adjacent
6.5MEDIUM
 CVE-2024-30378
< 20.4
A Use After Free vulnerability in command processing of Juniper Networks Junos OS on MX Series allows a local, authenticated attac
5.5MEDIUM
 CVE-2024-30402
< 20.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper N
5.9MEDIUM
 CVE-2024-30401
all versions
An Out-of-bounds Read vulnerability in the advanced forwarding management process aftman of Juniper Networks Junos OS on MX Series
5.9MEDIUM
 CVE-2024-30398
all versions
An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the Packet Forwarding Engine (PFE) of
7.5HIGH
 CVE-2024-30397
< 20.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Public Key Infrastructure daemon (pkid) of Junip
7.5HIGH
 CVE-2024-30392
< 21.2
A Stack-based Buffer Overflow vulnerability in Flow Processing Daemon (flowd) of Juniper Networks Junos OS allows an unauthenticat
7.5HIGH
 CVE-2024-30391
< 20.4
A Missing Authentication for Critical Function vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on
4.8MEDIUM
 CVE-2024-30389
all versions
An Incorrect Behavior Order vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on EX4300 Series allo
5.8MEDIUM
 CVE-2024-30388
all versions
An Improper Isolation or Compartmentalization vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on
6.5MEDIUM
 CVE-2024-30387
< 20.4
A Missing Synchronization vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on ACX5448 and ACX710
6.5MEDIUM
 CVE-2024-30386
< 20.4
A Use-After-Free vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS and Junos OS Evolved
5.3MEDIUM
 CVE-2024-30384
< 20.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Ju
5.5MEDIUM
 CVE-2024-30382
< 20.4
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and
7.5HIGH
 CVE-2024-30410
< 20.4
An Incorrect Behavior Order in the routing engine (RE) of Juniper Networks Junos OS on EX4300 Series allows traffic intended to th
5.8MEDIUM
 CVE-2024-30409
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in telemetry processing of Juniper Networks Junos OS and Jun
5.3MEDIUM
 CVE-2024-30405
< 21.2
An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000 Series devices using SPC2 line cards w
7.5HIGH
 CVE-2024-30395
< 21.2
An Improper Validation of Specified Type of Input vulnerability in Routing Protocol Daemon (RPD) of Junos OS and Junos OS Evolved
7.5HIGH
 CVE-2024-30394
< 21.2
A Stack-based Buffer Overflow vulnerability in the Routing Protocol Daemon (RPD) component of Junos OS and Junos OS Evolved allow
7.5HIGH
 CVE-2024-21618
all versions
An Access of Memory Location After End of Buffer vulnerability in the Layer-2 Control Protocols Daemon (l2cpd) of Juniper Networks
6.5MEDIUM
 CVE-2024-21615
< 21.2
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged at
5.0MEDIUM
 CVE-2024-21610
< 20.4
An Improper Handling of Exceptional Conditions vulnerability in the Class of Service daemon (cosd) of Juniper Networks Junos OS al
4.3MEDIUM
 CVE-2024-21609
< 20.4
A Missing Release of Memory after Effective Lifetime vulnerability in the IKE daemon (iked) of Juniper Networks Junos OS on MX Ser
6.5MEDIUM
 CVE-2024-21605
all versions
An Exposure of Resource to Wrong Sphere vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX 30
6.5MEDIUM
 CVE-2024-21598
all versions
An Improper Validation of Syntactic Correctness of Input vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Ju
7.5HIGH
 CVE-2024-21593
all versions
An Improper Check or Handling of Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Ju
6.5MEDIUM
 CVE-2024-21620
< 20.4
An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in J-Web of Juniper Networks
8.8HIGH
 CVE-2024-21619
< 20.4
A Missing Authentication for Critical Function vulnerability combined with a Generation of Error Message Containing Sensitive Info
5.3MEDIUM
 CVE-2024-21617
all versions
An Incomplete Cleanup vulnerability in Nonstop active routing (NSR) component of Juniper Networks Junos OS allows an adjacent, una
6.5MEDIUM
 CVE-2024-21616
all versions
An Improper Validation of Syntactic Correctness of Input vulnerability in Packet Forwarding Engine (PFE) of Juniper Networks Junos
7.5HIGH
 CVE-2024-21614
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos O
7.5HIGH
 CVE-2024-21613
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos OS a
6.5MEDIUM
 CVE-2024-21611
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos
7.5HIGH
 CVE-2024-21607
< 20.4
An Unsupported Feature in the UI vulnerability in Juniper Networks Junos OS on MX Series and EX9200 Series allows an unauthenticat
5.3MEDIUM
 CVE-2024-21606
< 20.4
A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series allows a network-base
7.5HIGH
 CVE-2024-21603
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper Network Junos OS on MX Series allow
6.5MEDIUM
 CVE-2024-21601
all versions
A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in the Flow-processing
5.9MEDIUM
 CVE-2024-21600
all versions
An Improper Neutralization of Equivalent Special Elements vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks
6.5MEDIUM
 CVE-2024-21599
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos
6.5MEDIUM
 CVE-2024-21597
all versions
An Exposure of Resource to Wrong Sphere vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on MX Ser
5.3MEDIUM
 CVE-2024-21596
all versions
A Heap-based Buffer Overflow vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved
5.3MEDIUM
 CVE-2024-21595
all versions
An Improper Validation of Syntactic Correctness of Input vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks J
7.5HIGH
 CVE-2024-21594
< 20.4
A Heap-based Buffer Overflow vulnerability in the Network Services Daemon (NSD) of Juniper Networks Junos OS allows authenticated,
5.5MEDIUM
 CVE-2024-21591
< 20.4
An Out-of-bounds Write vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated,
9.8CRITICAL
 CVE-2024-21587
all versions
An Improper Handling of Exceptional Conditions vulnerability in the broadband edge subscriber management daemon (bbe-smgd) of Juni
6.5MEDIUM
 CVE-2024-21585
all versions
An Improper Handling of Exceptional Conditions vulnerability in BGP session processing of Juniper Networks Junos OS and Junos OS E
5.9MEDIUM
 CVE-2023-36842
< 20.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in Juniper DHCP Daemon (jdhcpd) of Juniper Networks Junos OS
6.5MEDIUM
 CVE-2023-44204
all versions
An Improper Validation of Syntactic Correctness of Input vulnerability in Routing Protocol Daemon (rpd) Juniper Networks Junos OS
6.5MEDIUM
 CVE-2023-44203
< 20.4
An Improper Check or Handling of Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Ju
6.5MEDIUM
 CVE-2023-44201
< 20.4
An Incorrect Permission Assignment for Critical Resource vulnerability in a specific file of Juniper Networks Junos OS and Junos O
5.0MEDIUM
 CVE-2023-44199
< 20.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Ju
7.5HIGH
 CVE-2023-44198
< 20.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the SIP ALG of Juniper Networks Junos OS on SRX Series an
5.8MEDIUM
 CVE-2023-44197
< 20.4
An Out-of-Bounds Write vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows
7.5HIGH
 CVE-2023-44194
< 20.4
An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS allows an unauthenticated attacker with local access t
8.4HIGH
 CVE-2023-44193
< 20.4
An Improper Release of Memory Before Removing Last Reference vulnerability in Packet Forwarding Engine (PFE) of Juniper Networks J
5.5MEDIUM
 CVE-2023-44192
< 20.4
An Improper Input Validation vulnerability in the Packet Forwarding Engine of Juniper Networks Junos OS allows an unauthenticated,
7.5HIGH
 CVE-2023-44191
all versions
An Allocation of Resources Without Limits or Throttling vulnerability in Juniper Networks Junos OS allows an unauthenticated, netw
7.5HIGH
 CVE-2023-44185
< 20.4
An Improper Input Validation vulnerability in the routing protocol daemon (rpd) of Juniper Networks allows an attacker to cause a
7.5HIGH
 CVE-2023-44184
< 20.4
An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the management daemon (mgd) process of
6.5MEDIUM
 CVE-2023-44183
all versions
An Improper Input Validation vulnerability in the VxLAN packet forwarding engine (PFE) of Juniper Networks Junos OS on QFX5000 Ser
6.5MEDIUM
 CVE-2023-44182
< 20.4
An Unchecked Return Value vulnerability in the user interfaces to the Juniper Networks Junos OS and Junos OS Evolved, the CLI, the
7.3HIGH
 CVE-2023-44181
< 20.2
An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper Networks Junos OS QFX5k devices al
7.5HIGH
 CVE-2023-44178
< 20.4
A Stack-based Buffer Overflow vulnerability in the CLI command of Juniper Networks Junos OS allows a low privileged attacker to ex
5.5MEDIUM
 CVE-2023-44177
< 20.4
A Stack-based Buffer Overflow vulnerability in the CLI command of Juniper Networks Junos and Junos EVO allows a low privileged att
5.5MEDIUM
 CVE-2023-44176
< 20.4
A Stack-based Buffer Overflow vulnerability in the CLI command of Juniper Networks Junos OS allows a low privileged attacker to ex
5.5MEDIUM
 CVE-2023-44175
< 20.4
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows
6.5MEDIUM
 CVE-2023-36843
< 20.4
An Improper Handling of Inconsistent Special Elements vulnerability in the Junos Services Framework (jsf) module of Juniper Networ
7.5HIGH
 CVE-2023-36841
< 20.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Ju
7.5HIGH
 CVE-2023-36839
< 20.4
An Improper Validation of Specified Quantity in Input vulnerability in the Layer-2 control protocols daemon (l2cpd) of Juniper Net
6.5MEDIUM
 CVE-2023-22392
< 20.4
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos
6.5MEDIUM
 CVE-2023-44188
> 19.4 and < 20.4
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in telemetry processing of Juniper Networks Junos OS allows a ne
5.3MEDIUM
 CVE-2023-44186
< 20.4
An Improper Handling of Exceptional Conditions vulnerability in AS PATH processing of Juniper Networks Junos OS and Junos OS Evolv
7.5HIGH
 CVE-2023-36851
all versions
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Series allows an unauthenticated,
5.3MEDIUM
 CVE-2023-4481
< 20.4
An Improper Input Validation vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved
7.5HIGH
 CVE-2023-36847
< 20.4
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on EX Series allows an unauthenticated,
5.3MEDIUM
 CVE-2023-36846
< 20.4
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Series allows an unauthenticated,
5.3MEDIUM
 CVE-2023-36845
< 20.4
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an
9.8CRITICAL
 CVE-2023-36844
< 20.4
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series allows an unauthenticated, n
5.3MEDIUM
 CVE-2023-36850
all versions
An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Connectivity Fault Management(CFM) mo
6.5MEDIUM
 CVE-2023-36849
all versions
An Improper Check or Handling of Exceptional Conditions vulnerability in the Layer-2 control protocols daemon (l2cpd) of Juniper N
6.5MEDIUM
 CVE-2023-36848
all versions
An Improper Handling of Undefined Values vulnerability in the periodic packet management daemon (PPMD) of Juniper Networks Junos O
6.5MEDIUM
 CVE-2023-36840
< 19.3
A Reachable Assertion vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows a lo
5.5MEDIUM
 CVE-2023-36836
all versions
A Use of an Uninitialized Resource vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Ev
4.7MEDIUM
 CVE-2023-36835
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Ju
7.5HIGH
 CVE-2023-36834
all versions
An Incomplete Internal State Distinction vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX 4
6.5MEDIUM
 CVE-2023-36838
< 20.2
An Out-of-bounds Read vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series allows a loca
5.5MEDIUM
 CVE-2023-28985
all versions
An Improper Validation of Syntactic Correctness of Input vulnerability in Intrusion Detection and Prevention (IDP) of Juniper Netw
7.5HIGH
 CVE-2023-36832
< 19.1
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series allows
7.5HIGH
 CVE-2023-36831
all versions
An Improper Check or Handling of Exceptional Conditions vulnerability in the UTM (Unified Threat Management) Web-Filtering feature
7.5HIGH
 CVE-2023-0026
>= 15.1 and < 20.4
An Improper Input Validation vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved
7.5HIGH
 CVE-2023-28984
all versions
A Use After Free vulnerability in the Layer 2 Address Learning Manager (l2alm) of Juniper Networks Junos OS on QFX Series allows a
5.3MEDIUM
 CVE-2023-28982
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon of Juniper Networks Junos OS and
7.5HIGH
 CVE-2023-28981
all versions
An Improper Input Validation vulnerability in the kernel of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticat
6.5MEDIUM
 CVE-2023-28980
all versions
A Use After Free vulnerability in the routing protocol daemon of Juniper Networks Junos OS and Junos OS Evolved allows a locally a
5.5MEDIUM
 CVE-2023-28979
< 19.3
An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper Networks Junos OS allows an adjacen
4.7MEDIUM
 CVE-2023-28976
< 19.1
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper Networks Ju
7.5HIGH
 CVE-2023-28975
< 19.4
An Unexpected Status Code or Return Value vulnerability in the kernel of Juniper Networks Junos OS allows an unauthenticated attac
4.6MEDIUM
 CVE-2023-28974
< 19.4
An Improper Check for Unusual or Exceptional Conditions vulnerability in the bbe-smgd of Juniper Networks Junos OS allows an unaut
7.4HIGH
 CVE-2023-28972
all versions
An Improper Link Resolution Before File Access vulnerability in console port access of Juniper Networks Junos OS on NFX Series all
6.8MEDIUM
 CVE-2023-28970
< 21.2
An Improper Check or Handling of Exceptional Conditions vulnerability in packet processing on the network interfaces of Juniper Ne
6.5MEDIUM
 CVE-2023-28968
all versions
An Improperly Controlled Sequential Memory Allocation vulnerability in the Juniper Networks Deep Packet Inspection-Decoder (JDPI-D
5.3MEDIUM
 CVE-2023-28967
all versions
A Use of Uninitialized Resource vulnerability in the Border Gateway Protocol (BGP) software of Juniper Networks Junos OS and Junos
7.5HIGH
 CVE-2023-28965
< 19.3
An Improper Check or Handling of Exceptional Conditions within the storm control feature of Juniper Networks Junos OS allows an at
6.5MEDIUM
 CVE-2023-28964
< 18.1
An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon (rpd) of Juniper Networks Juno
7.5HIGH
 CVE-2023-28963
< 19.4
An Improper Authentication vulnerability in cert-mgmt.php, used by the J-Web component of Juniper Networks Junos OS allows an unau
5.3MEDIUM
 CVE-2023-28962
< 19.4
An Improper Authentication vulnerability in upload-file.php, used by the J-Web component of Juniper Networks Junos OS allows an un
5.3MEDIUM
 CVE-2023-28961
< 20.2
An Improper Handling of Unexpected Data Type vulnerability in IPv6 firewall filter processing of Juniper Networks Junos OS on the
5.8MEDIUM
 CVE-2023-28959
< 19.1
An Improper Check or Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on QFX1000
6.5MEDIUM
 CVE-2023-1697
< 19.4
An Improper Handling of Missing Values vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an
6.5MEDIUM
 CVE-2023-22417
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the Flow Processing Daemon (flowd) of Juniper Networks Junos
7.5HIGH
 CVE-2023-22416
< 20.4
A Buffer Overflow vulnerability in SIP ALG of Juniper Networks Junos OS allows a network-based, unauthenticated attacker to cause
7.5HIGH
 CVE-2023-22415
< 19.4
An Out-of-Bounds Write vulnerability in the H.323 ALG of Juniper Networks Junos OS allows an unauthenticated, network-based attack
7.5HIGH
 CVE-2023-22414
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in Flexible PIC Concentrator (FPC) of Juniper Networks Junos OS
6.5MEDIUM
 CVE-2023-22413
< 19.4
An Improper Check or Handling of Exceptional Conditions vulnerability in the IPsec library of Juniper Networks Junos OS allows a n
7.5HIGH
 CVE-2023-22412
all versions
An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC card and SRX Seri
7.5HIGH
 CVE-2023-22411
all versions
An Out-of-Bounds Write vulnerability in Flow Processing Daemon (flowd) of Juniper Networks Junos OS allows an unauthenticated, net
7.5HIGH
 CVE-2023-22410
< 20.2
A Missing Release of Memory after Effective Lifetime vulnerability in the Juniper Networks Junos OS on MX Series platforms with MP
7.5HIGH
 CVE-2023-22409
< 19.4
An Unchecked Input for Loop Condition vulnerability in a NAT library of Juniper Networks Junos OS allows a local authenticated att
5.5MEDIUM
 CVE-2023-22408
all versions
An Improper Validation of Array Index vulnerability in the SIP ALG of Juniper Networks Junos OS on SRX 5000 Series allows a networ
7.5HIGH
 CVE-2023-22407
< 18.4
An Incomplete Cleanup vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows
6.5MEDIUM
 CVE-2023-22406
< 19.3
A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper Networks Junos OS and Junos OS Evolved
6.5MEDIUM
 CVE-2023-22405
< 20.2
An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding
6.5MEDIUM
 CVE-2023-22404
< 19.3
An Out-of-bounds Write vulnerability in the Internet Key Exchange Protocol daemon (iked) of Juniper Networks Junos OS on SRX serie
6.5MEDIUM
 CVE-2023-22403
< 20.2
An Allocation of Resources Without Limits or Throttling vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Ju
7.5HIGH
 CVE-2023-22401
all versions
An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager daemon (aftmand) of Juniper Network
7.5HIGH
 CVE-2023-22399
all versions
When sFlow is enabled and it monitors a packet forwarded via ECMP, a buffer management vulnerability in the dcpfe process of Junip
7.5HIGH
 CVE-2023-22398
all versions
An Access of Uninitialized Pointer vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Ev
5.3MEDIUM
 CVE-2023-22396
all versions
An Uncontrolled Resource Consumption vulnerability in TCP processing on the Routing Engine (RE) of Juniper Networks Junos OS allow
7.5HIGH
 CVE-2023-22395
< 19.3
A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper Networks Junos OS allows an unauthenti
6.5MEDIUM
 CVE-2023-22394
< 19.3
An Improper Handling of Unexpected Data Type vulnerability in the handling of SIP calls in Juniper Networks Junos OS on SRX Series
7.5HIGH
 CVE-2023-22393
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in BGP route processing of Juniper Networks Junos OS and Jun
7.5HIGH
 CVE-2023-22391
< 19.4
A vulnerability in class-of-service (CoS) queue management in Juniper Networks Junos OS on the ACX2K Series devices allows an unau
7.5HIGH
 CVE-2022-22184
all versions
An Improper Input Validation vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved
7.5HIGH
 CVE-2022-22251
>= 20.2 and < 21.2
On cSRX Series devices software permission issues in the container filesystem and stored files combined with storing passwords in
7.8HIGH
 CVE-2022-22250
all versions
An Improper Control of a Resource Through its Lifetime vulnerability in Packet Forwarding Engine (PFE) of Juniper Networks Junos O
6.5MEDIUM
 CVE-2022-22249
< 15.1
An Improper Control of a Resource Through its Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Jun
6.5MEDIUM
 CVE-2022-22246
< 19.1
A PHP Local File Inclusion (LFI) vulnerability in the J-Web component of Juniper Networks Junos OS may allow a low-privileged auth
7.5HIGH
 CVE-2022-22245
< 19.1
A Path Traversal vulnerability in the J-Web component of Juniper Networks Junos OS allows an authenticated attacker to upload arbi
4.3MEDIUM
 CVE-2022-22244
< 19.1
An XPath Injection vulnerability in the J-Web component of Juniper Networks Junos OS allows an unauthenticated attacker sending a
5.3MEDIUM
 CVE-2022-22243
< 19.1
An XPath Injection vulnerability due to Improper Input Validation in the J-Web component of Juniper Networks Junos OS allows an au
4.3MEDIUM
 CVE-2022-22242
< 19.1
A Cross-site Scripting (XSS) vulnerability in the J-Web component of Juniper Networks Junos OS allows an unauthenticated attacker
6.1MEDIUM
 CVE-2022-22241
< 19.1
An Improper Input Validation vulnerability in the J-Web component of Juniper Networks Junos OS may allow an unauthenticated attack
8.1HIGH
 CVE-2022-22240
all versions
An Allocation of Resources Without Limits or Throttling and a Missing Release of Memory after Effective Lifetime vulnerability in
5.5MEDIUM
 CVE-2022-22238
< 19.2
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Jun
5.3MEDIUM
 CVE-2022-22237
all versions
An Improper Authentication vulnerability in the kernel of Juniper Networks Junos OS allows an unauthenticated, network-based attac
6.5MEDIUM
 CVE-2022-22236
all versions
An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway (ALG) of Juniper Networks Junos OS on SRX Series
7.5HIGH
 CVE-2022-22235
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Ju
5.9MEDIUM
 CVE-2022-22234
< 18.4
An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding
5.5MEDIUM
 CVE-2022-22233
all versions
An Unchecked Return Value to NULL Pointer Dereference vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS
5.5MEDIUM
 CVE-2022-22232
all versions
A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine of Juniper Networks Junos OS on SRX Series allows an unau
7.5HIGH
 CVE-2022-22231
all versions
An Unchecked Return Value to NULL Pointer Dereference vulnerability in Packet Forwarding Engine (PFE) of Juniper Networks Junos OS
7.5HIGH
 CVE-2022-22230
all versions
An Improper Input Validation vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved
6.5MEDIUM
 CVE-2022-22228
all versions
An Improper Validation of Specified Type of Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS
7.5HIGH
 CVE-2022-22226
all versions
In VxLAN scenarios on EX4300-MP, EX4600, QFX5000 Series devices an Uncontrolled Memory Allocation vulnerability in the Packet Forw
6.5MEDIUM
 CVE-2022-22225
all versions
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos O
5.9MEDIUM
 CVE-2022-22224
< 19.1
An Improper Check or Handling of Exceptional Conditions vulnerability in the processing of a malformed OSPF TLV in Juniper Network
6.5MEDIUM
 CVE-2022-22223
< 15.1
On QFX10000 Series devices using Juniper Networks Junos OS when configured as transit IP/MPLS penultimate hop popping (PHP) nodes
6.5MEDIUM
 CVE-2022-22220
< 18.4
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS, J
5.9MEDIUM
 CVE-2022-22219
all versions
Due to the Improper Handling of an Unexpected Data Type in the processing of EVPN routes on Juniper Networks Junos OS and Junos OS
5.9MEDIUM
 CVE-2022-22218
< 19.1
On SRX Series devices, an Improper Check for Unusual or Exceptional Conditions when using Certificate Management Protocol Version
7.5HIGH
 CVE-2022-22208
< 18.4
A Use After Free vulnerability in the Routing Protocol Daemon (rdp) of Juniper Networks Junos OS and Junos OS Evolved allows an un
5.9MEDIUM
 CVE-2022-22201
< 19.4
An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Packet Forwarding Engine (PFE) of Jun
7.5HIGH
 CVE-2022-22221
< 19.2
An Improper Neutralization of Special Elements vulnerability in the download manager of Juniper Networks Junos OS on SRX Series an
7.8HIGH
 CVE-2022-22217
< 19.1
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Ju
6.1MEDIUM
 CVE-2022-22216
< 18.4
An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the PFE of Juniper Networks Junos OS on PTX Series
4.3MEDIUM
 CVE-2022-22215
< 19.1
A Missing Release of File Descriptor or Handle after Effective Lifetime vulnerability in plugable authentication module (PAM) of J
6.5MEDIUM
 CVE-2022-22214
< 12.3
An Improper Input Validation vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS and Junos OS Evolved
6.5MEDIUM
 CVE-2022-22213
all versions
A vulnerability in Handling of Undefined Values in the routing protocol daemon (RPD) process of Juniper Networks Junos OS and Juno
5.9MEDIUM
 CVE-2022-22210
all versions
A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on QFX5000 Series and
6.5MEDIUM
 CVE-2022-22209
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the kernel of Juniper Networks Junos OS allows an unauthenti
7.5HIGH
 CVE-2022-22207
all versions
A Use After Free vulnerability in the Advanced Forwarding Toolkit (AFT) manager process (aftmand) of Juniper Networks Junos OS all
7.5HIGH
 CVE-2022-22206
all versions
A Buffer Overflow vulnerability in the PFE of Juniper Networks Junos OS on SRX series allows an unauthenticated network based atta
7.5HIGH
 CVE-2022-22205
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the Application Quality of Experience (appqoe) subsystem of
7.5HIGH
 CVE-2022-22204
all versions
An Improper Release of Memory Before Removing Last Reference vulnerability in the Session Initiation Protocol (SIP) Application La
5.3MEDIUM
 CVE-2022-22203
all versions
An Incorrect Comparison vulnerability in PFE of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to cause a D
6.5MEDIUM
 CVE-2022-22202
< 19.1
An Improper Handling of Exceptional Conditions vulnerability on specific PTX Series devices, including the PTX1000, PTX3000 (NextG
6.5MEDIUM
 CVE-2022-22198
all versions
An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS allows an unauthenticated network-bas
7.5HIGH
 CVE-2022-22197
< 17.3
An Operation on a Resource after Expiration or Release vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Juno
7.5HIGH
 CVE-2022-22196
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Jun
6.5MEDIUM
 CVE-2022-22193
all versions
An Improper Handling of Unexpected Data Type vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and J
5.5MEDIUM
 CVE-2022-22191
< 15.1
A Denial of Service (DoS) vulnerability in the processing of a flood of specific ARP traffic in Juniper Networks Junos OS on the E
6.5MEDIUM
 CVE-2022-22188
all versions
An Uncontrolled Memory Allocation vulnerability leading to a Heap-based Buffer Overflow in the packet forwarding engine (PFE) of J
7.5HIGH
 CVE-2022-22186
< 19.1
Due to an Improper Initialization vulnerability in Juniper Networks Junos OS on EX4650 devices, packets received on the management
7.2HIGH
 CVE-2022-22185
all versions
A vulnerability in Juniper Networks Junos OS on SRX Series, allows a network-based unauthenticated attacker to cause a Denial of S
7.5HIGH
 CVE-2022-22182
all versions
A Cross-site Scripting (XSS) vulnerability in Juniper Networks Junos OS J-Web allows an attacker to construct a URL that when visi
8.8HIGH
 CVE-2022-22181
< 18.3
A reflected Cross-site Scripting (XSS) vulnerability in J-Web of Juniper Networks Junos OS allows a network-based authenticated at
8.0HIGH
 CVE-2021-25220
< 19.3
BIND 9.11.0 - 9.11.36 9.12.0 - 9.16.26 9.17.0 - 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 - 9.11.36-S1 9.16.8-S1 - 9.16.26
6.8MEDIUM
 CVE-2022-22180
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the processing of specific IPv6 packets on certain EX Ser
7.5HIGH
 CVE-2022-22179
all versions
A Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Juniper DHCP daemon (jdhcpd) of Junipe
6.5MEDIUM
 CVE-2022-22178
all versions
A Stack-based Buffer Overflow vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on MX Series and SR
7.5HIGH
 CVE-2022-22177
all versions
A release of illegal memory vulnerability in the snmpd daemon of Juniper Networks Junos OS, Junos OS Evolved allows an attacker to
5.3MEDIUM
 CVE-2022-22176
all versions
An Improper Validation of Syntactic Correctness of Input vulnerability in the Juniper DHCP daemon (jdhcpd) of Juniper Networks Jun
7.4HIGH
 CVE-2022-22175
all versions
An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and SRX Series allows an unauthenticate
7.5HIGH
 CVE-2022-22174
all versions
A vulnerability in the processing of inbound IPv6 packets in Juniper Networks Junos OS on QFX5000 Series and EX4600 switches may c
7.5HIGH
 CVE-2022-22173
< 18.3
A Missing Release of Memory after Effective Lifetime vulnerability in the Public Key Infrastructure daemon (pkid) of Juniper Netwo
7.5HIGH
 CVE-2022-22172
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the Layer-2 control protocols daemon (l2cpd) of Juniper Netw
6.5MEDIUM
 CVE-2022-22171
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Ju
7.5HIGH
 CVE-2022-22170
all versions
A Missing Release of Resource after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Jun
7.5HIGH
 CVE-2022-22169
all versions
An Improper Initialization vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved al
5.9MEDIUM
 CVE-2022-22168
<= 19.1
An Improper Validation of Specified Type of Input vulnerability in the kernel of Juniper Networks Junos OS allows an unauthenticat
6.5MEDIUM
 CVE-2022-22167
all versions
A traffic classification vulnerability in Juniper Networks Junos OS on the SRX Series Services Gateways may allow an attacker to b
7.2HIGH
 CVE-2022-22166
all versions
An Improper Validation of Specified Quantity in Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos
6.5MEDIUM
 CVE-2022-22163
< 15.1
An Improper Input Validation vulnerability in the Juniper DHCP daemon (jdhcpd) of Juniper Networks Junos OS allows an adjacent una
7.4HIGH
 CVE-2022-22162
< 15.1
A Generation of Error Message Containing Sensitive Information vulnerability in the CLI of Juniper Networks Junos OS allows a loca
7.3HIGH
 CVE-2022-22161
<= 18.2
An Uncontrolled Resource Consumption vulnerability in the kernel of Juniper Networks Junos OS allows an unauthenticated network ba
7.5HIGH
 CVE-2022-22160
all versions
An Unchecked Error Condition vulnerability in the subscriber management daemon (smgd) of Juniper Networks Junos OS allows an unaut
6.5MEDIUM
 CVE-2022-22159
all versions
A vulnerability in the NETISR network queue functionality of Juniper Networks Junos OS kernel allows an attacker to cause a Denial
7.5HIGH
 CVE-2022-22157
all versions
A traffic classification vulnerability in Juniper Networks Junos OS on the SRX Series Services Gateways may allow an attacker to b
7.2HIGH
 CVE-2022-22156
<= 18.3
An Improper Certificate Validation weakness in the Juniper Networks Junos OS allows an attacker to perform Person-in-the-Middle (P
6.5MEDIUM
 CVE-2022-22155
all versions
An Uncontrolled Resource Consumption vulnerability in the handling of IPv6 neighbor state change events in Juniper Networks Junos
6.5MEDIUM
 CVE-2022-22154
all versions
In a Junos Fusion scenario an External Control of Critical State Data vulnerability in the Satellite Device (SD) control state mac
6.8MEDIUM
 CVE-2022-22153
< 18.2
An Insufficient Algorithmic Complexity combined with an Allocation of Resources Without Limits or Throttling vulnerability in the
7.5HIGH
 CVE-2021-31386
all versions
A Protection Mechanism Failure vulnerability in the J-Web HTTP service of Juniper Networks Junos OS allows a remote unauthenticate
5.3MEDIUM
 CVE-2021-31385
all versions
An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in J-Web of Juniper Networks Junos
8.8HIGH
 CVE-2021-31384
all versions
Due to a Missing Authorization weakness and Insufficient Granularity of Access Control in a specific device configuration, a vulne
7.2HIGH
 CVE-2021-31383
all versions
In Point to MultiPoint (P2MP) scenarios within established sessions between network or adjacent neighbors the improper use of a so
7.5HIGH
 CVE-2021-31382
all versions
On PTX1000 System, PTX10002-60C System, after upgrading to an affected release, a Race Condition vulnerability between the chassis
6.5MEDIUM
 CVE-2021-31379
all versions
An Incorrect Behavior Order vulnerability in the MAP-E automatic tunneling mechanism of Juniper Networks Junos OS allows an attack
7.5HIGH
 CVE-2021-31378
all versions
In broadband environments, including but not limited to Enhanced Subscriber Management, (CHAP, PPP, DHCP, etc.), on Juniper Networ
6.8MEDIUM
 CVE-2021-31377
all versions
An Incorrect Permission Assignment for Critical Resource vulnerability of a certain file in the filesystem of Junos OS allows a lo
5.5MEDIUM
 CVE-2021-31376
all versions
An Improper Input Validation vulnerability in Packet Forwarding Engine manager (FXPC) process of Juniper Networks Junos OS allows
7.5HIGH
 CVE-2021-31375
all versions
An Improper Input Validation vulnerability in routing process daemon (RPD) of Juniper Networks Junos OS devices configured with BG
7.2HIGH
 CVE-2021-31374
all versions
On Juniper Networks Junos OS and Junos OS Evolved devices processing a specially crafted BGP UPDATE or KEEPALIVE message can lead
7.5HIGH
 CVE-2021-31373
all versions
A persistent Cross-Site Scripting (XSS) vulnerability in Juniper Networks Junos OS on SRX Series, J-Web interface may allow a remo
8.0HIGH
 CVE-2021-31372
<= 18.2
An Improper Input Validation vulnerability in J-Web of Juniper Networks Junos OS allows a locally authenticated J-Web attacker to
8.8HIGH
 CVE-2021-31371
<= 17.2
Juniper Networks Junos OS uses the 128.0.0.0/2 subnet for internal communications between the RE and PFEs. It was discovered that
5.3MEDIUM
 CVE-2021-31370
all versions
An Incomplete List of Disallowed Inputs vulnerability in Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on QFX5000 Se
6.5MEDIUM
 CVE-2021-31369
< 17.4
On MX Series platforms with MS-MPC/MS-MIC, an Allocation of Resources Without Limits or Throttling vulnerability in Juniper Networ
5.3MEDIUM
 CVE-2021-31368
< 18.1
An Uncontrolled Resource Consumption vulnerability in the kernel of Juniper Networks JUNOS OS allows an unauthenticated network ba
7.5HIGH
 CVE-2021-31367
all versions
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos
6.5MEDIUM
 CVE-2021-31366
all versions
An Unchecked Return Value vulnerability in the authd (authentication daemon) of Juniper Networks Junos OS on MX Series configured
6.5MEDIUM
 CVE-2021-31365
< 18.1
An Uncontrolled Resource Consumption vulnerability in Juniper Networks Junos OS on EX2300, EX3400 and EX4300 Series platforms allo
6.5MEDIUM
 CVE-2021-31364
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability combined with a Race Condition in the flow daemon (flowd) of
5.9MEDIUM
 CVE-2021-31363
all versions
In an MPLS P2MP environment a Loop with Unreachable Exit Condition vulnerability in the routing protocol daemon (RPD) of Juniper N
6.5MEDIUM
 CVE-2021-31362
<= 18.1
A Protection Mechanism Failure vulnerability in RPD (routing protocol daemon) of Juniper Networks Junos OS and Junos OS Evolved al
6.5MEDIUM
 CVE-2021-31361
all versions
An Improper Check for Unusual or Exceptional Conditions vulnerability combined with Improper Handling of Exceptional Conditions in
5.3MEDIUM
 CVE-2021-31360
all versions
An improper privilege management vulnerability in the Juniper Networks Junos OS and Junos OS Evolved command-line interpreter (CLI
7.1HIGH
 CVE-2021-31359
all versions
A local privilege escalation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged user t
7.8HIGH
 CVE-2021-31355
all versions
A persistent cross-site scripting (XSS) vulnerability in the captive portal graphical user interface of Juniper Networks Junos OS
8.0HIGH
 CVE-2021-31354
all versions
An Out Of Bounds (OOB) access vulnerability in the handling of responses by a Juniper Agile License (JAL) Client in Juniper Networ
7.1HIGH
 CVE-2021-31353
all versions
An Improper Handling of Exceptional Conditions vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an attacker
7.5HIGH
 CVE-2021-31351
all versions
An Improper Check for Unusual or Exceptional Conditions in packet processing on the MS-MPC/MS-MIC utilized by Juniper Networks Jun
7.5HIGH
 CVE-2021-31350
all versions
An Improper Privilege Management vulnerability in the gRPC framework, used by the Juniper Extension Toolkit (JET) API on Juniper N
7.5HIGH
 CVE-2021-0299
all versions
An Improper Handling of Exceptional Conditions vulnerability in the processing of a transit or directly received malformed IPv6 pa
7.5HIGH
 CVE-2021-0284
all versions
A buffer overflow vulnerability in the TCP/IP stack of Juniper Networks Junos OS allows an attacker to send specific sequences of
7.5HIGH
 CVE-2021-0295
all versions
A vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) of Juniper Networks Junos OS on the QFX10K Series switch
6.1MEDIUM
 CVE-2021-0294
all versions
A vulnerability in Juniper Networks Junos OS, which only affects the release 18.4R2-S5, where a function is inconsistently impleme
5.3MEDIUM
 CVE-2021-0293
all versions
A vulnerability in Juniper Networks Junos OS caused by Missing Release of Memory after Effective Lifetime leads to a memory leak e
5.5MEDIUM
 CVE-2021-0291
all versions
An Exposure of System Data vulnerability in Juniper Networks Junos OS and Junos OS Evolved, where a sensitive system-level resourc
6.5MEDIUM
 CVE-2021-0290
all versions
Improper Handling of Exceptional Conditions in Ethernet interface frame processing of Juniper Networks Junos OS allows an attacker
6.5MEDIUM
 CVE-2021-0289
>= 5.7 and < 15.1
When user-defined ARP Policer is configured and applied on one or more Aggregated Ethernet (AE) interface units, a Time-of-check T
6.5MEDIUM
 CVE-2021-0288
all versions
A vulnerability in the processing of specific MPLS packets in Juniper Networks Junos OS on MX Series and EX9200 Series devices wit
6.5MEDIUM
 CVE-2021-0287
all versions
In a Segment Routing ISIS (SR-ISIS)/MPLS environment, on Juniper Networks Junos OS and Junos OS Evolved devices, configured with I
6.5MEDIUM
 CVE-2021-0285
all versions
An uncontrolled resource consumption vulnerability in Juniper Networks Junos OS on QFX5000 Series and EX4600 Series switches allow
7.5HIGH
 CVE-2021-0283
all versions
A buffer overflow vulnerability in the TCP/IP stack of Juniper Networks Junos OS allows an attacker to send specific sequences of
7.5HIGH
 CVE-2021-0282
all versions
On Juniper Networks Junos OS devices with Multipath or add-path feature enabled, processing a specific BGP UPDATE can lead to a ro
7.5HIGH
 CVE-2021-0281
all versions
On Juniper Networks Junos OS devices configured with BGP origin validation using Resource Public Key Infrastructure (RPKI) receipt
5.9MEDIUM
 CVE-2021-0280
all versions
Due to an Improper Initialization vulnerability in Juniper Networks Junos OS on PTX platforms and QFX10K Series with Paradise (PE)
7.5HIGH
 CVE-2021-0278
all versions
An Improper Input Validation vulnerability in J-Web of Juniper Networks Junos OS allows a locally authenticated attacker to escala
8.8HIGH
 CVE-2021-0277
all versions
An Out-of-bounds Read vulnerability in the processing of specially crafted LLDP frames by the Layer 2 Control Protocol Daemon (l2c
8.8HIGH
 CVE-2021-0275
all versions
A Cross-site Scripting (XSS) vulnerability in J-Web on Juniper Networks Junos OS allows an attacker to target another user's sessi
8.8HIGH
 CVE-2021-0273
all versions
An always-incorrect control flow implementation in the implicit filter terms of Juniper Networks Junos OS and Junos OS Evolved on
5.3MEDIUM
 CVE-2021-0272
all versions
A kernel memory leak in QFX10002-32Q, QFX10002-60C, QFX10002-72Q, QFX10008, QFX10016 devices Flexible PIC Concentrators (FPCs) on
6.5MEDIUM
 CVE-2021-0271
all versions
A Double Free vulnerability in the software forwarding interface daemon (sfid) process of Juniper Networks Junos OS allows an adja
6.5MEDIUM
 CVE-2021-0270
all versions
On PTX Series and QFX10k Series devices with the "inline-jflow" feature enabled, a use after free weakness in the Packet Forwardin
7.5HIGH
 CVE-2021-0269
all versions
The improper handling of client-side parameters in J-Web of Juniper Networks Junos OS allows an attacker to perform a number of di
8.8HIGH
 CVE-2021-0268
all versions
An Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') weakness in J-web of Juniper Networks Jun
8.8HIGH
 CVE-2021-0267
all versions
An Improper Input Validation vulnerability in the active-lease query portion in JDHCPD's DHCP Relay Agent of Juniper Networks Juno
7.4HIGH
 CVE-2021-0266
all versions
The use of multiple hard-coded cryptographic keys in cSRX Series software in Juniper Networks Junos OS allows an attacker to take
8.1HIGH
 CVE-2021-0264
all versions
A vulnerability in the processing of traffic matching a firewall filter containing a syslog action in Juniper Networks Junos OS on
5.9MEDIUM
 CVE-2021-0263
all versions
A Data Processing vulnerability in the Multi-Service process (multi-svcs) on the FPC of Juniper Networks Junos OS on the PTX Serie
5.9MEDIUM
 CVE-2021-0262
all versions
Through routine static code analysis of the Juniper Networks Junos OS software codebase, the Secure Development Life Cycle team id
6.5MEDIUM
 CVE-2021-0261
all versions
A vulnerability in the HTTP/HTTPS service used by J-Web, Web Authentication, Dynamic-VPN (DVPN), Firewall Authentication Pass-Thro
7.5HIGH
 CVE-2021-0260
all versions
An improper authorization vulnerability in the Simple Network Management Protocol daemon (snmpd) service of Juniper Networks Junos
7.3HIGH
 CVE-2021-0259
all versions
Due to a vulnerability in DDoS protection in Juniper Networks Junos OS and Junos OS Evolved on QFX5K Series switches in a VXLAN co
7.4HIGH
 CVE-2021-0258
all versions
A vulnerability in the forwarding of transit TCPv6 packets received on the Ethernet management interface of Juniper Networks Junos
5.9MEDIUM
 CVE-2021-0257
all versions
On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPCs (Modular Port Concentrators) where Integrated Routi
6.5MEDIUM
 CVE-2021-0256
all versions
A sensitive information disclosure vulnerability in the mosquitto message broker of Juniper Networks Junos OS may allow a locally
5.5MEDIUM
 CVE-2021-0255
all versions
A local privilege escalation vulnerability in ethtraceroute of Juniper Networks Junos OS may allow a locally authenticated user wi
5.5MEDIUM
 CVE-2021-0254
all versions
A buffer size validation vulnerability in the overlayd service of Juniper Networks Junos OS may allow an unauthenticated remote at
9.8CRITICAL
 CVE-2021-0253
all versions
NFX Series devices using Juniper Networks Junos OS are susceptible to a local command execution vulnerability thereby allowing an
7.8HIGH
 CVE-2021-0252
all versions
NFX Series devices using Juniper Networks Junos OS are susceptible to a local code execution vulnerability thereby allowing an att
7.8HIGH
 CVE-2021-0251
all versions
A NULL Pointer Dereference vulnerability in the Captive Portal Content Delivery (CPCD) services daemon (cpcd) of Juniper Networks
8.6HIGH
 CVE-2021-0250
all versions
In segment routing traffic engineering (SRTE) environments where the BGP Monitoring Protocol (BMP) feature is enable, a vulnerabil
7.5HIGH
 CVE-2021-0249
all versions
On SRX Series devices configured with UTM services a buffer overflow vulnerability in the Packet Forwarding Engine (PFE) of Junipe
8.1HIGH
 CVE-2021-0248
< 19.1
This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials in Juniper Networks
10.0CRITICAL
 CVE-2021-0247
all versions
A Race Condition (Concurrent Execution using Shared Resource with Improper Synchronization) vulnerability in the firewall process
5.1MEDIUM
 CVE-2021-0246
all versions
On SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with SPC2/SPC3, devices using tenant services on Juniper Networks Junos OS,
7.3HIGH
 CVE-2021-0245
all versions
A Use of Hard-coded Credentials vulnerability in Juniper Networks Junos OS on Junos Fusion satellite devices allows an attacker wh
7.8HIGH
 CVE-2021-0244
all versions
A signal handler race condition exists in the Layer 2 Address Learning Daemon (L2ALD) of Juniper Networks Junos OS due to the abse
7.4HIGH
 CVE-2021-0243
all versions
Improper Handling of Unexpected Data in the firewall policer of Juniper Networks Junos OS on EX4300 switches allows matching traff
4.7MEDIUM
 CVE-2021-0242
all versions
A vulnerability due to the improper handling of direct memory access (DMA) buffers on EX4300 switches on Juniper Networks Junos OS
6.5MEDIUM
 CVE-2021-0241
all versions
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent, Juniper Networks Dynamic Host Conf
7.4HIGH
 CVE-2021-0240
all versions
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent, the Juniper Networks Dynamic Host
7.4HIGH
 CVE-2021-0238
all versions
When a MX Series is configured as a Broadband Network Gateway (BNG) based on Layer 2 Tunneling Protocol (L2TP), executing certain
5.5MEDIUM
 CVE-2021-0237
all versions
On Juniper Networks EX4300-MP Series, EX4600 Series, EX4650 Series, QFX5K Series deployed as a Virtual Chassis with a specific Lay
6.5MEDIUM
 CVE-2021-0236
all versions
Due to an improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved the Routing Proto
6.5MEDIUM
 CVE-2021-0235
all versions
On SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with SPC2/SPC3, vSRX Series devices using tenant services on Juniper Network
7.3HIGH
 CVE-2021-0234
all versions
Due to an improper Initialization vulnerability on Juniper Networks Junos OS QFX5100-96S devices with QFX 5e Series image installe
5.8MEDIUM
 CVE-2021-0233
all versions
A vulnerability in Juniper Networks Junos OS ACX500 Series, ACX4000 Series, may allow an attacker to cause a Denial of Service (Do
7.5HIGH
 CVE-2021-0231
all versions
A path traversal vulnerability in the Juniper Networks SRX and vSRX Series may allow an authenticated J-web user to read sensitive
6.5MEDIUM
 CVE-2021-0230
all versions
On Juniper Networks SRX Series devices with link aggregation (lag) configured, executing any operation that fetches Aggregated Eth
7.5HIGH
 CVE-2021-0229
all versions
An uncontrolled resource consumption vulnerability in Message Queue Telemetry Transport (MQTT) server of Juniper Networks Junos OS
5.3MEDIUM
 CVE-2021-0228
all versions
An improper check for unusual or exceptional conditions vulnerability in Juniper Networks MX Series platforms with Trio-based MPC
6.5MEDIUM
 CVE-2021-0227
all versions
An improper restriction of operations within the bounds of a memory buffer vulnerability in Juniper Networks Junos OS J-Web on SRX
7.5HIGH
 CVE-2021-0224
all versions
A vulnerability in the handling of internal resources necessary to bring up a large number of Layer 2 broadband remote access subs
6.5MEDIUM
 CVE-2021-0216
all versions
A vulnerability in Juniper Networks Junos OS running on the ACX5448 and ACX710 platforms may cause BFD sessions to flap when a hig
6.5MEDIUM
 CVE-2021-0214
all versions
A vulnerability in the distributed or centralized periodic packet management daemon (PPMD) of Juniper Networks Junos OS may cause
6.5MEDIUM
 CVE-2021-0223
all versions
A local privilege escalation vulnerability in telnetd.real of Juniper Networks Junos OS may allow a locally authenticated shell us
7.8HIGH
 CVE-2021-0222
all versions
A vulnerability in Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by sending certai
7.4HIGH
 CVE-2021-0221
all versions
In an EVPN/VXLAN scenario, if an IRB interface with a virtual gateway address (VGA) is configured on a PE, a traffic loop may occu
6.5MEDIUM
 CVE-2021-0219
all versions
A command injection vulnerability in install package validation subsystem of Juniper Networks Junos OS that may allow a locally au
6.7MEDIUM
 CVE-2021-0218
all versions
A command injection vulnerability in the license-check daemon of Juniper Networks Junos OS that may allow a locally authenticated
7.8HIGH
 CVE-2021-0217
all versions
A vulnerability in processing of certain DHCP packets from adjacent clients on EX Series and QFX Series switches running Juniper N
7.4HIGH
 CVE-2021-0215
all versions
On Juniper Networks Junos EX series, QFX Series, MX Series and SRX branch series devices, a memory leak occurs every time the 802.
6.5MEDIUM
 CVE-2021-0211
all versions
An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon
10.0CRITICAL
 CVE-2021-0210
all versions
An Information Exposure vulnerability in J-Web of Juniper Networks Junos OS allows an unauthenticated attacker to elevate their pr
6.8MEDIUM
 CVE-2021-0208
all versions
An improper input validation vulnerability in the Routing Protocol Daemon (RPD) service of Juniper Networks Junos OS allows an att
8.8HIGH
 CVE-2021-0207
all versions
An improper interpretation conflict of certain data between certain software components within the Juniper Networks Junos OS devic
7.5HIGH
 CVE-2021-0206
all versions
A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS allows an attacker to send a specific packet causing the pac
7.5HIGH
 CVE-2021-0205
all versions
When the "Intrusion Detection Service" (IDS) feature is configured on Juniper Networks MX series with a dynamic firewall filter us
5.8MEDIUM
 CVE-2021-0204
all versions
A sensitive information disclosure vulnerability in delta-export configuration utility (dexp) of Juniper Networks Junos OS may all
7.8HIGH
 CVE-2021-0203
all versions
On Juniper Networks EX and QFX5K Series platforms configured with Redundant Trunk Group (RTG), Storm Control profile applied on th
8.6HIGH
 CVE-2021-0202
all versions
On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPC (Modular Port Concentrator) where Integrated Routing
7.5HIGH
 CVE-2020-1689
all versions
On Juniper Networks EX4300-MP Series, EX4600 Series and QFX5K Series deployed in a Virtual Chassis configuration, receipt of a str
6.5MEDIUM
 CVE-2020-1688
all versions
On Juniper Networks SRX Series and NFX Series, a local authenticated user with access to the shell may obtain the Web API service
6.5MEDIUM
 CVE-2020-1687
all versions
On Juniper Networks EX4300-MP Series, EX4600 Series and QFX5K Series deployed in (Ethernet VPN) EVPN-(Virtual Extensible LAN) VXLA
6.5MEDIUM
 CVE-2020-1686
all versions
On Juniper Networks Junos OS devices, receipt of a malformed IPv6 packet may cause the system to crash and restart (vmcore). This
7.5HIGH
 CVE-2020-1685
all versions
When configuring stateless firewall filters in Juniper Networks EX4600 and QFX 5000 Series devices using Virtual Extensible LAN pr
5.8MEDIUM
 CVE-2020-1684
all versions
On Juniper Networks SRX Series configured with application identification inspection enabled, receipt of specific HTTP traffic can
7.5HIGH
 CVE-2020-1683
all versions
On Juniper Networks Junos OS devices, a specific SNMP OID poll causes a memory leak which over time leads to a kernel crash (vmcor
7.5HIGH
 CVE-2020-1682
all versions
An input validation vulnerability exists in Juniper Networks Junos OS, allowing an attacker to crash the srxpfe process, causing a
5.5MEDIUM
 CVE-2020-1680
all versions
On Juniper Networks MX Series with MS-MIC or MS-MPC card configured with NAT64 configuration, receipt of a malformed IPv6 packet m
5.3MEDIUM
 CVE-2020-1679
all versions
On Juniper Networks PTX and QFX Series devices with packet sampling configured using tunnel-observation mpls-over-udp, sampling of
7.5HIGH
 CVE-2020-1678
all versions
On Juniper Networks Junos OS and Junos OS Evolved platforms with EVPN configured, receipt of specific BGP packets causes a slow me
6.5MEDIUM
 CVE-2020-1673
all versions
Insufficient Cross-Site Scripting (XSS) protection in Juniper Networks J-Web and web based (HTTP/HTTPS) services allows an unauthe
8.8HIGH
 CVE-2020-1672
all versions
On Juniper Networks Junos OS devices configured with DHCPv6 relay enabled, receipt of a specific DHCPv6 packet might crash the jdh
7.5HIGH
 CVE-2020-1671
all versions
On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent, Juniper Networks Dynamic Host Conf
7.5HIGH
 CVE-2020-1670
all versions
On Juniper Networks EX4300 Series, receipt of a stream of specific IPv4 packets can cause Routing Engine (RE) high CPU load, which
6.5MEDIUM
 CVE-2020-1669
all versions
The Juniper Device Manager (JDM) container, used by the disaggregated Junos OS architecture on Juniper Networks NFX350 Series devi
6.3MEDIUM
 CVE-2020-1668
all versions
On Juniper Networks EX2300 Series, receipt of a stream of specific multicast packets by the layer2 interface can cause high CPU lo
6.5MEDIUM
 CVE-2020-1667
all versions
When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an inc
8.3HIGH
 CVE-2020-1665
all versions
On Juniper Networks MX Series and EX9200 Series, in a certain condition the IPv6 Distributed Denial of Service (DDoS) protection m
5.3MEDIUM
 CVE-2020-1664
all versions
A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local
7.8HIGH
 CVE-2020-1662
all versions
On Juniper Networks Junos OS and Junos OS Evolved devices, BGP session flapping can lead to a routing process daemon (RPD) crash a
7.5HIGH
 CVE-2020-1661
all versions
On Juniper Networks Junos OS devices configured as a DHCP forwarder, the Juniper Networks Dynamic Host Configuration Protocol Daem
5.3MEDIUM
 CVE-2020-1660
all versions
When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an inc
8.3HIGH
 CVE-2020-1657
all versions
On SRX Series devices, a vulnerability in the key-management-daemon (kmd) daemon of Juniper Networks Junos OS allows an attacker t
7.5HIGH
 CVE-2020-1656
all versions
The DHCPv6 Relay-Agent service, part of the Juniper Enhanced jdhcpd daemon shipped with Juniper Networks Junos OS has an Improper
8.8HIGH
 CVE-2020-1655
all versions
When a device running Juniper Networks Junos OS with MPC7, MPC8, or MPC9 line cards installed and the system is configured for inl
5.3MEDIUM
 CVE-2020-1654
all versions
On Juniper Networks SRX Series with ICAP (Internet Content Adaptation Protocol) redirect service enabled, processing a malformed H
9.8CRITICAL
 CVE-2020-1653
all versions
On Juniper Networks Junos OS devices, a stream of TCP packets sent to the Routing Engine (RE) may cause mbuf leak which can lead t
7.5HIGH
 CVE-2020-1651
all versions
On Juniper Networks MX series, receipt of a stream of specific Layer 2 frames may cause a memory leak resulting in the packet forw
6.5MEDIUM
 CVE-2020-1650
all versions
On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC com
7.5HIGH
 CVE-2020-1649
all versions
When a device running Juniper Networks Junos OS with MPC7, MPC8, or MPC9 line cards installed and the system is configured for inl
7.5HIGH
 CVE-2020-1648
all versions
On Juniper Networks Junos OS and Junos OS Evolved devices, processing a specific BGP packet can lead to a routing process daemon (
7.5HIGH
 CVE-2020-1647
all versions
On Juniper Networks SRX Series with ICAP (Internet Content Adaptation Protocol) redirect service enabled, a double free vulnerabil
9.8CRITICAL
 CVE-2020-1646
all versions
On Juniper Networks Junos OS and Junos OS Evolved devices, processing a specific UPDATE for an EBGP peer can lead to a routing pro
7.5HIGH
 CVE-2020-1645
all versions
When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an inc
8.3HIGH
 CVE-2020-1644
all versions
On Juniper Networks Junos OS and Junos OS Evolved devices, the receipt of a specific BGP UPDATE packet causes an internal counter
7.5HIGH
 CVE-2020-1643
all versions
Execution of the "show ospf interface extensive" or "show ospf interface detail" CLI commands on a Juniper Networks device running
5.5MEDIUM
 CVE-2020-1641
all versions
A Race Condition vulnerability in Juniper Networks Junos OS LLDP implementation allows an attacker to cause LLDP to crash leading
6.5MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin