Juniper Csrx
17 CVEs affecting Juniper Csrx. Latest disclosed: 2024-07-11. Critical: 0, High: 11.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-0266 | High | 8.1 | 2021-04-22 | The use of multiple hard-coded cryptographic keys in cSRX Series software in Juniper Networks Junos OS allows an attacker to take control of any instance of a… |
CVE-2022-22251 | High | 7.8 | 2022-10-18 | On cSRX Series devices software permission issues in the container filesystem and stored files combined with storing passwords in a recoverable format in Junip… |
CVE-2019-0058 | High | 7.8 | 2019-10-09 | A vulnerability in the Veriexec subsystem of Juniper Networks Junos OS allowing an attacker to fully compromise the host system. A local authenticated user can… |
CVE-2024-39540 | High | 7.5 | 2024-07-11 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on SRX Series, and MX… |
CVE-2023-28985 | High | 7.5 | 2023-07-14 | An Improper Validation of Syntactic Correctness of Input vulnerability in Intrusion Detection and Prevention (IDP) of Juniper Networks SRX Series and MX Series… |
CVE-2023-36831 | High | 7.5 | 2023-07-14 | An Improper Check or Handling of Exceptional Conditions vulnerability in the UTM (Unified Threat Management) Web-Filtering feature of Juniper Networks Junos OS… |
CVE-2019-0075 | High | 7.5 | 2019-10-09 | A vulnerability in the srxpfe process on Protocol Independent Multicast (PIM) enabled SRX series devices may lead to crash of the srxpfe process and an FPC reb… |
CVE-2019-0066 | High | 7.5 | 2019-10-09 | An unexpected status return value weakness in the Next-Generation Multicast VPN (NG-mVPN) service of Juniper Networks Junos OS allows attacker to cause a Denia… |
CVE-2019-0062 | High | 7.5 | 2019-10-09 | A session fixation vulnerability in J-Web on Junos OS may allow an attacker to use social engineering techniques to fix and hijack a J-Web administrators web s… |
CVE-2019-0060 | High | 7.5 | 2019-10-09 | The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets throug… |
CVE-2019-0055 | High | 7.5 | 2019-10-09 | A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by se… |
CVE-2019-0054 | Medium | 6.8 | 2019-10-09 | An Improper Certificate Validation weakness in the SRX Series Application Identification (app-id) signature update client of Juniper Networks Junos OS allows a… |
CVE-2024-21609 | Medium | 6.5 | 2024-04-12 | A Missing Release of Memory after Effective Lifetime vulnerability in the IKE daemon (iked) of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series… |
CVE-2021-0289 | Medium | 6.5 | 2021-07-15 | When user-defined ARP Policer is configured and applied on one or more Aggregated Ethernet (AE) interface units, a Time-of-check Time-of-use (TOCTOU) Race Cond… |
CVE-2019-0068 | Medium | 6.5 | 2019-10-09 | The SRX flowd process, responsible for packet forwarding, may crash and restart when processing specific multicast packets. By continuously sending the specifi… |
CVE-2023-36838 | Medium | 5.5 | 2023-07-14 | An Out-of-bounds Read vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series allows a local, authenticated attacker wit… |
CVE-2024-30391 | Medium | 4.8 | 2024-04-12 | A Missing Authentication for Critical Function vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on MX Series with SPC3, and SRX… |