Every CVE whose affected-product data names Juniper Junos, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (200)
CVE-2021-0248 — CVSS 10.0 (critical): This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials in Juniper Networks Junos OS…
CVE-2013-4685 — CVSS 10.0 (critical): Buffer overflow in flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7, 12.1 before 12.1R6, and 12.1X44 before 12.1X44-D15 on…
CVE-2017-2343 — CVSS 10.0 (critical): The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to provide…
CVE-2020-1614 — CVSS 10.0 (critical): A Use of Hard-coded Credentials vulnerability exists in the NFX250 Series for the vSRX Virtual Network Function (VNF) instance, which…
CVE-2021-0211 — CVSS 10.0 (critical): An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon (RPD)…
CVE-2017-2349 — CVSS 9.9 (critical): A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series devices potentially allows a user with…
CVE-2018-0016 — CVSS 9.8 (critical): Receipt of a specially crafted Connectionless Network Protocol (CLNP) datagram destined to an interface of a Junos OS device may result in…
CVE-2018-0037 — CVSS 9.8 (critical): Junos OS routing protocol daemon (RPD) process may crash and restart or may lead to remote code execution while processing specific BGP…
CVE-2018-0044 — CVSS 9.8 (critical): An insecure SSHD configuration in Juniper Device Manager (JDM) and host OS on Juniper NFX Series devices may allow remote unauthenticated…
CVE-2020-1654 — CVSS 9.8 (critical): On Juniper Networks SRX Series with ICAP (Internet Content Adaptation Protocol) redirect service enabled, processing a malformed HTTP…
CVE-2021-0254 — CVSS 9.8 (critical): A buffer size validation vulnerability in the overlayd service of Juniper Networks Junos OS may allow an unauthenticated remote attacker to…
CVE-2020-1647 — CVSS 9.8 (critical): On Juniper Networks SRX Series with ICAP (Internet Content Adaptation Protocol) redirect service enabled, a double free vulnerability can…
CVE-2020-1615 — CVSS 9.8 (critical): The factory configuration for vMX installations, as shipped, includes default credentials for the root account. Without proper modification…
CVE-2016-1279 — CVSS 9.8 (critical): J-Web in Juniper Junos OS before 12.1X46-D45, 12.1X46-D50, 12.1X47 before 12.1X47-D35, 12.3 before 12.3R12, 12.3X48 before 12.3X48-D25…
CVE-2017-10615 — CVSS 9.8 (critical): A vulnerability in the pluggable authentication module (PAM) of Juniper Networks Junos OS may allow an unauthenticated network based…
CVE-2017-2345 — CVSS 9.8 (critical): On Junos OS devices with SNMP enabled, a network based attacker with unfiltered access to the RE can cause the Junos OS snmpd daemon to…
CVE-2019-0008 — CVSS 9.8 (critical): A certain sequence of valid BGP or IPv6 BFD packets may trigger a stack based buffer overflow in the Junos OS Packet Forwarding Engine…
CVE-2019-0036 — CVSS 9.8 (critical): When configuring a stateless firewall filter in Junos OS, terms named using the format "internal-n" (e.g. "internal-1", "internal-2", etc.)…
CVE-2020-10188 — CVSS 9.8 (critical): utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data…
CVE-2018-0001 — CVSS 9.8 (critical): A remote, unauthenticated attacker may be able to execute code by exploiting a use-after-free defect found in older versions of PHP through…
CVE-2018-0007 — CVSS 9.8 (critical): An unauthenticated network-based attacker able to send a maliciously crafted LLDP packet to the local segment, through a local segment…
CVE-2019-0002 — CVSS 9.8 (critical): On EX2300 and EX3400 series, stateless firewall filter configuration that uses the action 'policer' in combination with other actions might…
CVE-2019-0006 — CVSS 9.8 (critical): A certain crafted HTTP packet can trigger an uninitialized function pointer deference vulnerability in the Packet Forwarding Engine manager…
CVE-2017-10601 — CVSS 9.8 (critical): A specific device configuration can result in a commit failure condition. When this occurs, a user is logged in without being prompted for…
CVE-2024-21591 — CVSS 9.8 (critical): An Out-of-bounds Write vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated…
CVE-2013-6014 — CVSS 9.3 (critical): Juniper Junos 10.4 before 10.4S15, 11.4 before 11.4R9, 11.4X27 before 11.4X27.44, 12.1 before 12.1R7, 12.1X44 before 12.1X44-D20, 12.1X45…
CVE-2019-0007 — CVSS 9.3 (critical): The vMX Series software uses a predictable IP ID Sequence Number. This leaves the system as well as clients connecting through the device…
CVE-2015-5362 — CVSS 9.3 (critical): The BFD daemon in Juniper Junos OS 12.1X44 before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R10…
CVE-2019-0040 — CVSS 9.1 (critical): On Junos OS, rpcbind should only be listening to port 111 on the internal routing instance (IRI). External packets destined to port 111…
CVE-2014-3816 — CVSS 9.0 (critical): Juniper Junos 11.4 before 11.4R12, 12.1 before 12.1R11, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D20…
CVE-2013-6618 — CVSS 9.0 (critical): jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before…
CVE-2020-1656 — CVSS 8.8 (high): The DHCPv6 Relay-Agent service, part of the Juniper Enhanced jdhcpd daemon shipped with Juniper Networks Junos OS has an Improper Input…
CVE-2021-0278 — CVSS 8.8 (high): An Improper Input Validation vulnerability in J-Web of Juniper Networks Junos OS allows a locally authenticated attacker to escalate their…
CVE-2024-21620 — CVSS 8.8 (high): An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in J-Web of Juniper Networks Junos OS…
CVE-2017-2341 — CVSS 8.8 (high): An insufficient authentication vulnerability on platforms where Junos OS instances are run in a virtualized environment, may allow…
CVE-2021-0208 — CVSS 8.8 (high): An improper input validation vulnerability in the Routing Protocol Daemon (RPD) service of Juniper Networks Junos OS allows an attacker to…
CVE-2020-1673 — CVSS 8.8 (high): Insufficient Cross-Site Scripting (XSS) protection in Juniper Networks J-Web and web based (HTTP/HTTPS) services allows an unauthenticated…
CVE-2021-31372 — CVSS 8.8 (high): An Improper Input Validation vulnerability in J-Web of Juniper Networks Junos OS allows a locally authenticated J-Web attacker to escalate…
CVE-2021-31385 — CVSS 8.8 (high): An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in J-Web of Juniper Networks Junos OS…
CVE-2021-0269 — CVSS 8.8 (high): The improper handling of client-side parameters in J-Web of Juniper Networks Junos OS allows an attacker to perform a number of different…
CVE-2020-1609 — CVSS 8.8 (high): When a device using Juniper Network's Dynamic Host Configuration Protocol Daemon (JDHCPD) process on Junos OS or Junos OS Evolved which is…
CVE-2021-0268 — CVSS 8.8 (high): An Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') weakness in J-web of Juniper Networks Junos OS…
CVE-2020-1605 — CVSS 8.8 (high): When a device using Juniper Network's Dynamic Host Configuration Protocol Daemon (JDHCPD) process on Junos OS or Junos OS Evolved which is…
CVE-2026-33785 — CVSS 8.8 (high): A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with low…
CVE-2021-0275 — CVSS 8.8 (high): A Cross-site Scripting (XSS) vulnerability in J-Web on Juniper Networks Junos OS allows an attacker to target another user's session…
CVE-2024-39565 — CVSS 8.8 (high): An Improper Neutralization of Data within XPath Expressions ('XPath Injection') vulnerability in J-Web shipped with Juniper Networks Junos…
CVE-2022-22182 — CVSS 8.8 (high): A Cross-site Scripting (XSS) vulnerability in Juniper Networks Junos OS J-Web allows an attacker to construct a URL that when visited by…
CVE-2019-0070 — CVSS 8.8 (high): An Improper Input Validation weakness allows a malicious local attacker to elevate their permissions to take control of other portions of…
CVE-2019-0047 — CVSS 8.8 (high): A persistent Cross-Site Scripting (XSS) vulnerability in Junos OS J-Web interface may allow remote unauthenticated attackers to perform…
CVE-2021-0277 — CVSS 8.8 (high): An Out-of-bounds Read vulnerability in the processing of specially crafted LLDP frames by the Layer 2 Control Protocol Daemon (l2cpd) of…
CVE-2018-0045 — CVSS 8.8 (high): Receipt of a specific Draft-Rosen MVPN control packet may cause the routing protocol daemon (RPD) process to crash and restart or may lead…
CVE-2018-0043 — CVSS 8.8 (high): Receipt of a specific MPLS packet may cause the routing protocol daemon (RPD) process to crash and restart or may lead to remote code…
CVE-2018-0021 — CVSS 8.8 (high): If all 64 digits of the connectivity association name (CKN) key or all 32 digits of the connectivity association key (CAK) key are not…
CVE-2016-1264 — CVSS 8.8 (high): Race condition in the Op command in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3…
CVE-2020-1613 — CVSS 8.6 (high): A vulnerability in the BGP FlowSpec implementation may cause a Juniper Networks Junos OS device to terminate an established BGP session…
CVE-2021-0251 — CVSS 8.6 (high): A NULL Pointer Dereference vulnerability in the Captive Portal Content Delivery (CPCD) services daemon (cpcd) of Juniper Networks Junos OS…
CVE-2016-1286 — CVSS 8.6 (high): named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure…
CVE-2020-1603 — CVSS 8.6 (high): Specific IPv6 packets sent by clients processed by the Routing Engine (RE) are improperly handled. These IPv6 packets are designed to be…
CVE-2019-0041 — CVSS 8.6 (high): On EX4300-MP Series devices with any lo0 filters applied, transit network traffic may reach the control plane via loopback interface (lo0)…
CVE-2020-1632 — CVSS 8.6 (high): In a certain condition, receipt of a specific BGP UPDATE message might cause Juniper Networks Junos OS and Junos OS Evolved devices to…
CVE-2017-10605 — CVSS 8.6 (high): On all vSRX and SRX Series devices, when the DHCP or DHCP relay is configured, specially crafted packet might cause the flowd process to…
CVE-2021-0203 — CVSS 8.6 (high): On Juniper Networks EX and QFX5K Series platforms configured with Redundant Trunk Group (RTG), Storm Control profile applied on the RTG…
CVE-2013-6012 — CVSS 8.5 (high): Juniper Junos 12.1X44 before 12.1.X44-D20 and 12.1X45 before 12.1X45-D15, when the no-validate option is enabled, does not properly handle…
CVE-2016-4922 — CVSS 8.4 (high): Certain combinations of Junos OS CLI commands and arguments have been found to be exploitable in a way that can allow unauthorized access…
CVE-2023-44194 — CVSS 8.4 (high): An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS allows an unauthenticated attacker with local access to the…
CVE-2016-4924 — CVSS 8.4 (high): An incorrect permissions vulnerability in Juniper Networks Junos OS on vMX may allow local unprivileged users on a host system read access…
CVE-2020-1667 — CVSS 8.3 (high): When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming…
CVE-2020-1660 — CVSS 8.3 (high): When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming…
CVE-2020-1645 — CVSS 8.3 (high): When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming…
CVE-2018-0002 — CVSS 8.2 (high): On SRX Series and MX Series devices with a Service PIC with any ALG enabled, a crafted TCP/IP response packet processed through the device…
CVE-2021-0266 — CVSS 8.1 (high): The use of multiple hard-coded cryptographic keys in cSRX Series software in Juniper Networks Junos OS allows an attacker to take control…
CVE-2022-22241 — CVSS 8.1 (high): An Improper Input Validation vulnerability in the J-Web component of Juniper Networks Junos OS may allow an unauthenticated attacker to…
CVE-2019-0039 — CVSS 8.1 (high): If REST API is enabled, the Junos OS login credentials are vulnerable to brute force attacks. The high default connection limit of the REST…
CVE-2021-0249 — CVSS 8.1 (high): On SRX Series devices configured with UTM services a buffer overflow vulnerability in the Packet Forwarding Engine (PFE) of Juniper…
CVE-2017-2342 — CVSS 8.1 (high): MACsec feature on Juniper Networks Junos OS 15.1X49 prior to 15.1X49-D100 on SRX300 series does not report errors when a secure link can…
CVE-2016-4923 — CVSS 8.0 (high): Insufficient cross site scripting protection in J-Web component in Juniper Networks Junos OS may potentially allow a remote unauthenticated…
CVE-2021-31355 — CVSS 8.0 (high): A persistent cross-site scripting (XSS) vulnerability in the captive portal graphical user interface of Juniper Networks Junos OS may allow…
CVE-2021-31373 — CVSS 8.0 (high): A persistent Cross-Site Scripting (XSS) vulnerability in Juniper Networks Junos OS on SRX Series, J-Web interface may allow a remote…
CVE-2022-22181 — CVSS 8.0 (high): A reflected Cross-site Scripting (XSS) vulnerability in J-Web of Juniper Networks Junos OS allows a network-based authenticated attacker to…
CVE-2021-0253 — CVSS 7.8 (high): NFX Series devices using Juniper Networks Junos OS are susceptible to a local command execution vulnerability thereby allowing an attacker…
CVE-2013-4684 — CVSS 7.8 (high): flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R8, 12.1 before 12.1R7, and 12.1X44 before 12.1X44-D15 on SRX devices, when PIM…
CVE-2021-0245 — CVSS 7.8 (high): A Use of Hard-coded Credentials vulnerability in Juniper Networks Junos OS on Junos Fusion satellite devices allows an attacker who is…
CVE-2013-4687 — CVSS 7.8 (high): flowd in Juniper Junos 10.4 before 10.4S14, 11.2 and 11.4 before 11.4R6-S2, and 12.1 before 12.1R6 on SRX devices, when certain Application…
CVE-2013-4688 — CVSS 7.8 (high): flowd in Juniper Junos 10.4 before 10.4R11 on SRX devices, when the MSRPC Application Layer Gateway (ALG) is enabled, allows remote…
CVE-2014-0618 — CVSS 7.8 (high): Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before…
CVE-2014-3815 — CVSS 7.8 (high): Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of…
CVE-2014-3817 — CVSS 7.8 (high): Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before…
CVE-2014-3818 — CVSS 7.8 (high): Juniper Junos OS 9.1 through 11.4 before 11.4R11, 12.1 before R10, 12.1X44 before D40, 12.1X46 before D30, 12.1X47 before D11 and…
CVE-2014-3819 — CVSS 7.8 (high): Juniper Junos 11.4 before 11.4R12, 12.1 before 12.1R10, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20…
CVE-2014-6378 — CVSS 7.8 (high): Juniper Junos 11.4 before R12-S4, 12.1X44 before D35, 12.1X45 before D30, 12.1X46 before D25, 12.1X47 before D10, 12.2 before R9, 12.2X50…
CVE-2014-6380 — CVSS 7.8 (high): Juniper Junos 11.4 before R11, 12.1 before R9, 12.1X44 before D30, 12.1X45 before D20, 12.1X46 before D15, 12.1X47 before D10, 12.2 before…
CVE-2014-6386 — CVSS 7.8 (high): Juniper Junos 11.4 before 11.4R8, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, 12.1X47 before…
CVE-2014-6448 — CVSS 7.8 (high): Juniper Junos OS 13.2 before 13.2R5, 13.2X51, 13.2X52, and 13.3 before 13.3R3 allow local users to bypass intended restrictions and execute…
CVE-2014-6450 — CVSS 7.8 (high): Juniper Junos OS before 11.4R12-S4, 12.1X44 before 12.1X44-D41, 12.1X46 before 12.1X46-D26, 12.1X47 before 12.1X47-D11/D15, 12.2 before…
CVE-2014-6451 — CVSS 7.8 (high): J-Web in Juniper vSRX virtual firewalls with Junos OS before 15.1X49-D20 allows remote attackers to cause a denial of service (system…
CVE-2015-7749 — CVSS 7.8 (high): The PFE daemon in Juniper vSRX virtual firewalls with Junos OS before 15.1X49-D20 allows remote attackers to cause a denial of service via…
CVE-2015-7752 — CVSS 7.8 (high): The SSH server in Juniper Junos OS before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R10, 12.3X48…
CVE-2016-1271 — CVSS 7.8 (high): Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D25, 13.2 before 13.2R8, 13.3…
CVE-2016-1278 — CVSS 7.8 (high): Juniper Junos OS before 12.1X46-D50 on SRX Series devices reverts to "safe mode" authentication and allows root CLI logins without a…
CVE-2026-33793 — CVSS 7.8 (high): An Execution with Unnecessary Privileges vulnerability in the User Interface (UI) of Juniper Networks Junos OS and Junos OS Evolved allows…
CVE-2017-2344 — CVSS 7.8 (high): A routine within an internal Junos OS sockets library is vulnerable to a buffer overflow. Malicious exploitation of this issue may lead to…
CVE-2018-0024 — CVSS 7.8 (high): An Improper Privilege Management vulnerability in a shell session of Juniper Networks Junos OS allows an authenticated unprivileged…
CVE-2022-22251 — CVSS 7.8 (high): On cSRX Series devices software permission issues in the container filesystem and stored files combined with storing passwords in a…
CVE-2022-22221 — CVSS 7.8 (high): An Improper Neutralization of Special Elements vulnerability in the download manager of Juniper Networks Junos OS on SRX Series and EX…
CVE-2019-0053 — CVSS 7.8 (high): Insufficient validation of environment variables in the telnet client supplied in Junos OS can lead to stack-based buffer overflows, which…
CVE-2019-0057 — CVSS 7.8 (high): An improper authorization weakness in Juniper Networks Junos OS allows a local authenticated attacker to bypass regular security controls…
CVE-2019-0058 — CVSS 7.8 (high): A vulnerability in the Veriexec subsystem of Juniper Networks Junos OS allowing an attacker to fully compromise the host system. A local…
CVE-2019-0061 — CVSS 7.8 (high): The management daemon (MGD) is responsible for all configuration and management operations in Junos OS. The Junos CLI communicates with MGD…
CVE-2019-0071 — CVSS 7.8 (high): Veriexec is a kernel-based file integrity subsystem in Junos OS that ensures only authorized binaries are able to be executed. Due to a…
CVE-2026-33788 — CVSS 7.8 (high): A Missing Authentication for Critical Function vulnerability in the Flexible PIC Concentrators (FPCs) of Juniper Networks Junos OS Evolved…
CVE-2020-1664 — CVSS 7.8 (high): A stack buffer overflow vulnerability in the device control daemon (DCD) on Juniper Networks Junos OS allows a low privilege local user to…
CVE-2021-31359 — CVSS 7.8 (high): A local privilege escalation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged user to cause…
CVE-2021-0204 — CVSS 7.8 (high): A sensitive information disclosure vulnerability in delta-export configuration utility (dexp) of Juniper Networks Junos OS may allow a…
CVE-2007-6372 — CVSS 7.8 (high): Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP…
CVE-2021-0218 — CVSS 7.8 (high): A command injection vulnerability in the license-check daemon of Juniper Networks Junos OS that may allow a locally authenticated attacker…
CVE-2021-0223 — CVSS 7.8 (high): A local privilege escalation vulnerability in telnetd.real of Juniper Networks Junos OS may allow a locally authenticated shell user to…
CVE-2021-0252 — CVSS 7.8 (high): NFX Series devices using Juniper Networks Junos OS are susceptible to a local code execution vulnerability thereby allowing an attacker to…
CVE-2017-2304 — CVSS 7.5 (high): Juniper Networks QFX3500, QFX3600, QFX5100, QFX5200, EX4300 and EX4600 devices running Junos OS 14.1X53 prior to 14.1X53-D40, 15.1X53 prior…
CVE-2023-44186 — CVSS 7.5 (high): An Improper Handling of Exceptional Conditions vulnerability in AS PATH processing of Juniper Networks Junos OS and Junos OS Evolved allows…
CVE-2017-2313 — CVSS 7.5 (high): Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd…
CVE-2017-2314 — CVSS 7.5 (high): Receipt of a malformed BGP OPEN message may cause the routing protocol daemon (rpd) process to crash and restart. By continuously sending…
CVE-2017-2315 — CVSS 7.5 (high): On Juniper Networks EX Series Ethernet Switches running affected Junos OS versions, a vulnerability in IPv6 processing has been discovered…
CVE-2023-44185 — CVSS 7.5 (high): An Improper Input Validation vulnerability in the routing protocol daemon (rpd) of Juniper Networks allows an attacker to cause a Denial of…
CVE-2024-21606 — CVSS 7.5 (high): A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series allows a network-based…
CVE-2024-21611 — CVSS 7.5 (high): A Missing Release of Memory after Effective Lifetime vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and…
CVE-2024-21614 — CVSS 7.5 (high): An Improper Check for Unusual or Exceptional Conditions vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and…
CVE-2026-21906 — CVSS 7.5 (high): An Improper Handling of Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX…
CVE-2024-21616 — CVSS 7.5 (high): An Improper Validation of Syntactic Correctness of Input vulnerability in Packet Forwarding Engine (PFE) of Juniper Networks Junos OS…
CVE-2023-44181 — CVSS 7.5 (high): An Improperly Implemented Security Check for Standard vulnerability in storm control of Juniper Networks Junos OS QFX5k devices allows…
CVE-2016-1274 — CVSS 7.5 (high): Juniper Junos OS 14.1X53 before 14.1X53-D30 on QFX Series switches allows remote attackers to cause a denial of service (PFE panic) via a…
CVE-2017-2348 — CVSS 7.5 (high): The Juniper Enhanced jdhcpd daemon may experience high CPU utilization, or crash and restart upon receipt of an invalid IPv6 UDP packet…
CVE-2016-1270 — CVSS 7.5 (high): The rpd daemon in Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R9, 12.3X48…
CVE-2017-3145 — CVSS 7.5 (high): BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error…
CVE-2016-1269 — CVSS 7.5 (high): Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before…
CVE-2024-30382 — CVSS 7.5 (high): An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS…
CVE-2023-36843 — CVSS 7.5 (high): An Improper Handling of Inconsistent Special Elements vulnerability in the Junos Services Framework (jsf) module of Juniper Networks Junos…
CVE-2023-36841 — CVSS 7.5 (high): An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on…
CVE-2026-33790 — CVSS 7.5 (high): An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow daemon (flowd) of Juniper Networks Junos OS on SRX Series…
CVE-2023-36835 — CVSS 7.5 (high): An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on…
CVE-2016-1263 — CVSS 7.5 (high): Juniper Junos OS before 12.1X46-D45, 12.1X46-D50, 12.1X47 before 12.1X47-D35, 12.3X48 before 12.3X48-D30, 13.3 before 13.3R9-S1, 14.1…
CVE-2023-36832 — CVSS 7.5 (high): An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series allows an…
CVE-2023-36831 — CVSS 7.5 (high): An Improper Check or Handling of Exceptional Conditions vulnerability in the UTM (Unified Threat Management) Web-Filtering feature of…
CVE-2024-30392 — CVSS 7.5 (high): A Stack-based Buffer Overflow vulnerability in Flow Processing Daemon (flowd) of Juniper Networks Junos OS allows an unauthenticated…
CVE-2018-0017 — CVSS 7.5 (high): A vulnerability in the Network Address Translation - Protocol Translation (NAT-PT) feature of Junos OS on SRX series devices may allow a…
CVE-2018-0018 — CVSS 7.5 (high): On SRX Series devices during compilation of IDP policies, an attacker sending specially crafted packets may be able to bypass firewall…
CVE-2023-28985 — CVSS 7.5 (high): An Improper Validation of Syntactic Correctness of Input vulnerability in Intrusion Detection and Prevention (IDP) of Juniper Networks SRX…
CVE-2018-0020 — CVSS 7.5 (high): Junos OS may be impacted by the receipt of a malformed BGP UPDATE which can lead to a routing process daemon (rpd) crash and restart…
CVE-2024-30394 — CVSS 7.5 (high): A Stack-based Buffer Overflow vulnerability in the Routing Protocol Daemon (RPD) component of Junos OS and Junos OS Evolved allows an…
CVE-2018-0022 — CVSS 7.5 (high): A Junos device with VPLS routing-instances configured on one or more interfaces may be susceptible to an mbuf leak when processing a…
CVE-2021-0233 — CVSS 7.5 (high): A vulnerability in Juniper Networks Junos OS ACX500 Series, ACX4000 Series, may allow an attacker to cause a Denial of Service (DoS) by…
CVE-2023-28982 — CVSS 7.5 (high): A Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon of Juniper Networks Junos OS and Junos OS…
CVE-2023-28976 — CVSS 7.5 (high): An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on…
CVE-2018-0027 — CVSS 7.5 (high): Receipt of a crafted or malformed RSVP PATH message may cause the routing protocol daemon (RPD) to hang or crash. When RPD is unavailable…
CVE-2023-28967 — CVSS 7.5 (high): A Use of Uninitialized Resource vulnerability in the Border Gateway Protocol (BGP) software of Juniper Networks Junos OS and Junos OS…
CVE-2018-0030 — CVSS 7.5 (high): Receipt of a specific MPLS packet may cause MPC7/8/9, PTX-FPC3 (FPC-P1, FPC-P2) line cards or PTX1K to crash and restart. By continuously…
CVE-2023-28964 — CVSS 7.5 (high): An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and…
CVE-2018-0032 — CVSS 7.5 (high): The receipt of a crafted BGP UPDATE can lead to a routing process daemon (RPD) crash and restart. Repeated receipt of the same crafted BGP…
CVE-2023-22417 — CVSS 7.5 (high): A Missing Release of Memory after Effective Lifetime vulnerability in the Flow Processing Daemon (flowd) of Juniper Networks Junos OS…
CVE-2023-22416 — CVSS 7.5 (high): A Buffer Overflow vulnerability in SIP ALG of Juniper Networks Junos OS allows a network-based, unauthenticated attacker to cause a Denial…
CVE-2024-30395 — CVSS 7.5 (high): An Improper Validation of Specified Type of Input vulnerability in Routing Protocol Daemon (RPD) of Junos OS and Junos OS Evolved allows an…
CVE-2024-30397 — CVSS 7.5 (high): An Improper Check for Unusual or Exceptional Conditions vulnerability in the the Public Key Infrastructure daemon (pkid) of Juniper…
CVE-2024-30398 — CVSS 7.5 (high): An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the Packet Forwarding Engine (PFE) of Juniper…
CVE-2024-30405 — CVSS 7.5 (high): An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000 Series devices using SPC2 line cards while ALGs…
CVE-2018-0048 — CVSS 7.5 (high): A vulnerability in the Routing Protocols Daemon (RPD) with Juniper Extension Toolkit (JET) support can allow a network based…
CVE-2018-0049 — CVSS 7.5 (high): A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS allows an attacker to cause the Junos OS kernel to crash. Continued…
CVE-2018-0050 — CVSS 7.5 (high): An error handling vulnerability in Routing Protocols Daemon (RPD) of Juniper Networks Junos OS allows an attacker to cause RPD to crash…
CVE-2018-0051 — CVSS 7.5 (high): A Denial of Service vulnerability in the SIP application layer gateway (ALG) component of Junos OS based platforms allows an attacker to…
CVE-2023-22415 — CVSS 7.5 (high): An Out-of-Bounds Write vulnerability in the H.323 ALG of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to…
CVE-2023-22413 — CVSS 7.5 (high): An Improper Check or Handling of Exceptional Conditions vulnerability in the IPsec library of Juniper Networks Junos OS allows a…
CVE-2023-22412 — CVSS 7.5 (high): An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC card and SRX Series allows…
CVE-2023-22411 — CVSS 7.5 (high): An Out-of-Bounds Write vulnerability in Flow Processing Daemon (flowd) of Juniper Networks Junos OS allows an unauthenticated…
CVE-2023-22410 — CVSS 7.5 (high): A Missing Release of Memory after Effective Lifetime vulnerability in the Juniper Networks Junos OS on MX Series platforms with MPC10/MPC11…
CVE-2023-22408 — CVSS 7.5 (high): An Improper Validation of Array Index vulnerability in the SIP ALG of Juniper Networks Junos OS on SRX 5000 Series allows a network-based…
CVE-2023-22403 — CVSS 7.5 (high): An Allocation of Resources Without Limits or Throttling vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS…
CVE-2023-22401 — CVSS 7.5 (high): An Improper Validation of Array Index vulnerability in the Advanced Forwarding Toolkit Manager daemon (aftmand) of Juniper Networks Junos…
CVE-2023-22399 — CVSS 7.5 (high): When sFlow is enabled and it monitors a packet forwarded via ECMP, a buffer management vulnerability in the dcpfe process of Juniper…
CVE-2023-22396 — CVSS 7.5 (high): An Uncontrolled Resource Consumption vulnerability in TCP processing on the Routing Engine (RE) of Juniper Networks Junos OS allows an…
CVE-2023-22394 — CVSS 7.5 (high): An Improper Handling of Unexpected Data Type vulnerability in the handling of SIP calls in Juniper Networks Junos OS on SRX Series and MX…
CVE-2018-15504 — CVSS 7.5 (high): An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. The server mishandles some HTTP request fields…
CVE-2018-15505 — CVSS 7.5 (high): An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. An HTTP POST request with a specially crafted "Host"…
CVE-2019-0001 — CVSS 7.5 (high): Receipt of a malformed packet on MX Series devices with dynamic vlan configuration can trigger an uncontrolled recursion loop in the…
CVE-2024-39515 — CVSS 7.5 (high): An Improper Validation of Consistency within Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and…
CVE-2023-22393 — CVSS 7.5 (high): An Improper Check for Unusual or Exceptional Conditions vulnerability in BGP route processing of Juniper Networks Junos OS and Junos OS…
CVE-2023-22391 — CVSS 7.5 (high): A vulnerability in class-of-service (CoS) queue management in Juniper Networks Junos OS on the ACX2K Series devices allows an…
CVE-2024-39516 — CVSS 7.5 (high): An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an…
CVE-2024-39518 — CVSS 7.5 (high): A Heap-based Buffer Overflow vulnerability in the telemetry sensor process (sensord) of Juniper Networks Junos OS on MX240, MX480, MX960…
CVE-2024-39525 — CVSS 7.5 (high): An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS…
CVE-2023-0026 — CVSS 7.5 (high): An Improper Input Validation vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an…
CVE-2019-0010 — CVSS 7.5 (high): An SRX Series Service Gateway configured for Unified Threat Management (UTM) may experience a system crash with the error message "mbuf…
CVE-2021-0261 — CVSS 7.5 (high): A vulnerability in the HTTP/HTTPS service used by J-Web, Web Authentication, Dynamic-VPN (DVPN), Firewall Authentication Pass-Through with…
CVE-2019-0012 — CVSS 7.5 (high): A Denial of Service (DoS) vulnerability in BGP in Juniper Networks Junos OS configured as a VPLS PE allows an attacker to craft a specific…
CVE-2022-22246 — CVSS 7.5 (high): A PHP Local File Inclusion (LFI) vulnerability in the J-Web component of Juniper Networks Junos OS may allow a low-privileged authenticated…
CVE-2019-0014 — CVSS 7.5 (high): On QFX and PTX Series, receipt of a malformed packet for J-Flow sampling might crash the FPC (Flexible PIC Concentrator) process which…
CVE-2024-39529 — CVSS 7.5 (high): A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series…
CVE-2019-0019 — CVSS 7.5 (high): When BGP tracing is enabled an incoming BGP message may cause the Junos OS routing protocol daemon (rpd) process to crash and restart…
CVE-2019-0028 — CVSS 7.5 (high): On Junos devices with the BGP graceful restart helper mode enabled or the BGP graceful restart mechanism enabled, a BGP session restart on…
CVE-2019-0031 — CVSS 7.5 (high): Specific IPv6 DHCP packets received by the jdhcpd daemon will cause a memory resource consumption issue to occur on a Junos OS device using…
CVE-2019-0033 — CVSS 7.5 (high): A firewall bypass vulnerability in the proxy ARP service of Juniper Networks Junos OS allows an attacker to cause a high CPU condition…