Juniper Networks Junos Os vulnerabilities
652 known vulnerabilities affecting juniper_networks/junos_os.
Total CVEs
652
CISA KEV
7
actively exploited
Public exploits
6
Exploited in wild
6
Severity breakdown
CRITICAL34HIGH348MEDIUM270
Vulnerabilities
Page 11 of 33
CVE-2023-36843HIGHCVSS 7.5fixed in 20.4R3-S8≥ 21.1R1, < 21.1*+7 more2023-10-12
CVE-2023-36843 [HIGH] CWE-168 CVE-2023-36843:
An Improper Handling of Inconsistent Special Elements vulnerability in the Junos Services Framework
An Improper Handling of Inconsistent Special Elements vulnerability in the Junos Services Framework (jsf) module of Juniper Networks Junos OS allows an unauthenticated network based attacker to cause a crash in the Packet Forwarding Engine (pfe) and thereby resulting in a Denial of Service (DoS).
Upon receiving malformed SSL traffic, the PFE crashes.
nvd
CVE-2023-36841HIGHCVSS 7.5fixed in 20.4R3-S7≥ 21.1R1, < 21.1*+7 more2023-10-12
CVE-2023-36841 [HIGH] CWE-400 CVE-2023-36841:
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engi
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on MX Series allows a unauthenticated network-based attacker to cause an infinite loop, resulting in a Denial of Service (DoS).
An attacker who sends malformed TCP traffic via an interface configured with PPPoE, cau
nvd
CVE-2023-44175HIGHCVSS 7.5fixed in 20.4R3-S7≥ 21.1, < 21.1R3-S4+7 more2023-10-12
CVE-2023-44175 [HIGH] CWE-617 CVE-2023-44175:
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows to send specific genuine PIM packets to the device resulting in rpd to crash causing a Denial of Service (DoS).
Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.
Not
nvd
CVE-2023-22392MEDIUMCVSS 6.5fixed in 20.4R3-S5≥ 21.1, < 21.1R3-S4+13 more2023-10-12
CVE-2023-22392 [MEDIUM] CWE-401 CVE-2023-22392:
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine
A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS).
PTX3000, PTX5000, QFX10000, PTX1000, PTX10002, and PTX10004, PTX10008 and PTX10016 with LC110x FPCs do not support certain flow-routes.
nvd
CVE-2023-36839MEDIUMCVSS 6.5fixed in 20.4R3-S8≥ 21.1R1, < 21.1*+7 more2023-10-12
CVE-2023-36839 [MEDIUM] CWE-1284 CVE-2023-36839:
An Improper Validation of Specified Quantity in Input vulnerability in the Layer-2 control protocol
An Improper Validation of Specified Quantity in Input vulnerability in the Layer-2 control protocols daemon (l2cpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker who sends specific LLDP packets to cause a Denial of Service(DoS).
This issue occurs when specific LLDP packets are received and telemetry
nvd
CVE-2023-44186HIGHCVSS 7.5fixed in 20.4R3-S8≥ 21.1R1, < 21.1*+7 more2023-10-11
CVE-2023-44186 [HIGH] CWE-755 CVE-2023-44186:
An Improper Handling of Exceptional Conditions vulnerability in AS PATH processing of Juniper Netwo
An Improper Handling of Exceptional Conditions vulnerability in AS PATH processing of Juniper Networks Junos OS and Junos OS Evolved allows an attacker to send a BGP update message with an AS PATH containing a large number of 4-byte ASes, leading to a Denial of Service (DoS). Continued receipt and processing of these BGP updates will create a sustaine
nvd
CVE-2023-44188MEDIUMCVSS 5.3≥ 20.4, < 20.4R3-S9≥ 21.1R1, < 21.1*+8 more2023-10-11
CVE-2023-44188 [MEDIUM] CWE-367 CVE-2023-44188:
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in telemetry processing of Junipe
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in telemetry processing of Juniper Networks Junos OS allows a network-based authenticated attacker to flood the system with multiple telemetry requests, causing the Junos Kernel Debugging Streaming Daemon (jkdsd) process to crash, leading to a Denial of Service (DoS). Continued receip
nvd
CVE-2023-36851MEDIUMCVSS 5.3KEV≥ 21.2, < 21.2R3-S8≥ 21.4, < 21.4R3-S6+5 more2023-09-27
CVE-2023-36851 [MEDIUM] CWE-306 CVE-2023-36851: A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Ser
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity.
With a specific request to
webauth_operation.php
that doesn't require authentication, an attacker is able to upload and download arbitrary
nvd
CVE-2023-36845CRITICALCVSS 9.8KEVPoCfixed in 20.4R3-S9≥ 21.1, < 21.1*+8 more2023-08-17
CVE-2023-36845 [CRITICAL] CWE-473 CVE-2023-36845: A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Serie
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series
and SRX Series
allows an unauthenticated, network-based attacker to remotely execute code.
Using a crafted request which sets the variable PHPRC an attacker is able to modify the PHP execution environment allowing the injection und execution of
nvd
CVE-2023-36846MEDIUMCVSS 5.3KEVPoCfixed in 20.4R3-S8≥ 21.1, < 21.1*+7 more2023-08-17
CVE-2023-36846 [MEDIUM] CWE-306 CVE-2023-36846: A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Ser
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity.
With a specific request to user.php that doesn't require authentication an attacker is able to upload arbitrary files via J-Web, leading to a
nvd
CVE-2023-36847MEDIUMCVSS 5.3KEVPoCfixed in 20.4R3-S8≥ 21.1, < 21.1*+7 more2023-08-17
CVE-2023-36847 [MEDIUM] CWE-306 CVE-2023-36847: A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on EX Seri
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity.
With a specific request to installAppPackage.php that doesn't require authentication an attacker is able to upload arbitrary files via J-Web,
nvd
CVE-2023-36844MEDIUMCVSS 5.3KEVPoCfixed in 20.4R3-S9≥ 21.1, < 21.1*+8 more2023-08-17
CVE-2023-36844 [MEDIUM] CWE-473 CVE-2023-36844: A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Serie
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based attacker to control certain, important environment variables.
Using a crafted request an attacker is able to modify
certain PHP environment variables leading to partial loss of integrity, which may allow ch
nvd
CVE-2023-36835HIGHCVSS 7.5≥ 20.3, < 20.3*≥ 20.4, < 20.4R3-S5+7 more2023-07-14
CVE-2023-36835 [HIGH] CWE-754 CVE-2023-36835: An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engin
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on QFX10000 Series allows a network based attacker to cause a Denial of Service (DoS).
If a specific valid IP packet is received and that packet needs to be routed over a VXLAN tunnel, this will result in a PFE wedg
nvd
CVE-2023-36832HIGHCVSS 7.5≥ unspecified, < 19.1R3-S10≥ 19.2, < 19.2R3-S7+12 more2023-07-14
CVE-2023-36832 [HIGH] CWE-755 CVE-2023-36832: An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Network
An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series allows an unauthenticated network-based attacker to send specific packets to an Aggregated Multiservices (AMS) interface on the device, causing the packet forwarding engine (PFE) to crash, resulting in a Denial of Service (DoS).
nvd
CVE-2023-28985HIGHCVSS 7.5≥ unspecified, < SigPack 35982023-07-14
CVE-2023-28985 [HIGH] CWE-1286 CVE-2023-28985: An Improper Validation of Syntactic Correctness of Input vulnerability in Intrusion Detection and Pr
An Improper Validation of Syntactic Correctness of Input vulnerability in Intrusion Detection and Prevention (IDP) of Juniper Networks SRX Series and MX Series allows an unauthenticated, network-based attacker to cause Denial of Service (DoS). Continued receipt of this specific packet will cause a sustained Denial of Service condition.
On all SRX Se
nvd
CVE-2023-36831HIGHCVSS 7.5≥ 22.2, < 22.2R3≥ 22.3, < 22.3R2-S1, 22.3R3+1 more2023-07-14
CVE-2023-36831 [HIGH] CWE-703 CVE-2023-36831: An Improper Check or Handling of Exceptional Conditions vulnerability in the UTM (Unified Threat Man
An Improper Check or Handling of Exceptional Conditions vulnerability in the UTM (Unified Threat Management) Web-Filtering feature of Juniper Networks Junos OS on SRX Series causes a jbuf memory leak to occur when accessing certain websites, eventually leading to a Denial of Service (DoS) condition. Service restoration is only possible by rebooting th
nvd
CVE-2023-36849MEDIUMCVSS 6.5≥ 21.4, < 21.4R3-S3≥ 22.1, < 22.1R3-S3+2 more2023-07-14
CVE-2023-36849 [MEDIUM] CWE-703 CVE-2023-36849: An Improper Check or Handling of Exceptional Conditions vulnerability in the Layer-2 control protoco
An Improper Check or Handling of Exceptional Conditions vulnerability in the Layer-2 control protocols daemon (l2cpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial of Service (DoS).
When a malformed LLDP packet is received, l2cpd will crash and restart. The impact of the l2cpd crash
nvd
CVE-2023-36848MEDIUMCVSS 6.5≥ unspecified, < 19.1R3-S10≥ 19.2, < 19.2R3-S7+14 more2023-07-14
CVE-2023-36848 [MEDIUM] CWE-232 CVE-2023-36848: An Improper Handling of Undefined Values vulnerability in the periodic packet management daemon (PPM
An Improper Handling of Undefined Values vulnerability in the periodic packet management daemon (PPMD) of Juniper Networks Junos OS on MX Series(except MPC10, MPC11 and LC9600) allows an unauthenticated adjacent attacker to cause a Denial of Service (DoS).
When a malformed CFM packet is received, it leads to an FPC crash. Continued receipt of these
nvd
CVE-2023-36840MEDIUMCVSS 5.5≥ unspecified, < 19.3R3-S10≥ 20.1, < 20.1R3-S4+10 more2023-07-14
CVE-2023-36840 [MEDIUM] CWE-617 CVE-2023-36840: A Reachable Assertion vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos OS an
A Reachable Assertion vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows a locally-based, low-privileged attacker to cause a Denial of Service (DoS).
On all Junos OS and Junos OS Evolved, when a specific L2VPN command is run, RPD will crash and restart. Continued execution of this specific comman
nvd
CVE-2023-36838MEDIUMCVSS 5.5≥ unspecified, < 20.2R3-S7≥ 20.3, < 20.3*+9 more2023-07-14
CVE-2023-36838 [MEDIUM] CWE-125 CVE-2023-36838: An Out-of-bounds Read vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos
An Out-of-bounds Read vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series allows a local, authenticated attacker with low privileges, to cause a Denial of Service (DoS).
If a low privileged user executes a specific CLI command, flowd which is responsible for traffic forwarding in SRX crashes and generates a
nvd