Juniper Junos
122 CVEs affecting Juniper Junos. Latest disclosed: 2017-10-13. Critical: 7, High: 33.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-2343 | Critical | 10.0 | 2017-07-17 | The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to provide simple integration of… |
CVE-2017-2349 | Critical | 9.9 | 2017-07-17 | A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series devices potentially allows a user with login access to the devi… |
CVE-2017-10615 | Critical | 9.8 | 2017-10-13 | A vulnerability in the pluggable authentication module (PAM) of Juniper Networks Junos OS may allow an unauthenticated network based attacker to potentially ex… |
CVE-2017-2345 | Critical | 9.8 | 2017-07-17 | On Junos OS devices with SNMP enabled, a network based attacker with unfiltered access to the RE can cause the Junos OS snmpd daemon to crash and restart by se… |
CVE-2017-10601 | Critical | 9.8 | 2017-07-17 | A specific device configuration can result in a commit failure condition. When this occurs, a user is logged in without being prompted for a password while try… |
CVE-2016-1279 | Critical | 9.8 | 2016-09-09 | J-Web in Juniper Junos OS before 12.1X46-D45, 12.1X46-D50, 12.1X47 before 12.1X47-D35, 12.3 before 12.3R12, 12.3X48 before 12.3X48-D25, 13.3 before 13.3R10, 13… |
CVE-2013-6014 | Critical | 9.3 | 2013-10-28 | Juniper Junos 10.4 before 10.4S15, 11.4 before 11.4R9, 11.4X27 before 11.4X27.44, 12.1 before 12.1R7, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 1… |
CVE-2017-2341 | High | 8.8 | 2017-07-17 | An insufficient authentication vulnerability on platforms where Junos OS instances are run in a virtualized environment, may allow unprivileged users on the Ju… |
CVE-2016-1264 | High | 8.8 | 2016-04-15 | Race condition in the Op command in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 b… |
CVE-2017-10605 | High | 8.6 | 2017-07-17 | On all vSRX and SRX Series devices, when the DHCP or DHCP relay is configured, specially crafted packet might cause the flowd process to crash, halting or inte… |
CVE-2016-1286 | High | 8.6 | 2016-03-09 | named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via… |
CVE-2016-4924 | High | 8.4 | 2017-10-13 | An incorrect permissions vulnerability in Juniper Networks Junos OS on vMX may allow local unprivileged users on a host system read access to vMX or vPFE image… |
CVE-2016-4922 | High | 8.4 | 2017-10-13 | Certain combinations of Junos OS CLI commands and arguments have been found to be exploitable in a way that can allow unauthorized access to the operating syst… |
CVE-2017-2342 | High | 8.1 | 2017-07-17 | MACsec feature on Juniper Networks Junos OS 15.1X49 prior to 15.1X49-D100 on SRX300 series does not report errors when a secure link can not be established. It… |
CVE-2016-4923 | High | 8.0 | 2017-10-13 | Insufficient cross site scripting protection in J-Web component in Juniper Networks Junos OS may potentially allow a remote unauthenticated user to inject web… |
CVE-2017-2344 | High | 7.8 | 2017-07-17 | A routine within an internal Junos OS sockets library is vulnerable to a buffer overflow. Malicious exploitation of this issue may lead to a denial of service… |
CVE-2016-1278 | High | 7.8 | 2016-08-05 | Juniper Junos OS before 12.1X46-D50 on SRX Series devices reverts to "safe mode" authentication and allows root CLI logins without a password after a failed up… |
CVE-2016-1271 | High | 7.8 | 2016-04-15 | Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D25, 13.2 before 13.2R8, 13.3 before 13.3R7, 14.1… |
CVE-2017-10619 | High | 7.5 | 2017-10-13 | When Express Path (formerly known as service offloading) is configured on Juniper Networks SRX1400, SRX3400, SRX3600, SRX5400, SRX5600, SRX5800 in high availab… |
CVE-2017-10610 | High | 7.5 | 2017-10-13 | On SRX Series devices, a crafted ICMP packet embedded within a NAT64 IPv6 to IPv4 tunnel may cause the flowd process to crash. Repeated crashes of the flowd pr… |