Juniper Nfx150
25 CVEs affecting Juniper Nfx150. Latest disclosed: 2024-07-01. Critical: 2, High: 14.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-0248 | Critical | 10.0 | 2021-04-22 | This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials in Juniper Networks Junos OS allows an attacker t… |
CVE-2018-0044 | Critical | 9.8 | 2018-10-10 | An insecure SSHD configuration in Juniper Device Manager (JDM) and host OS on Juniper NFX Series devices may allow remote unauthenticated access if any of the… |
CVE-2019-0070 | High | 8.8 | 2019-10-09 | An Improper Input Validation weakness allows a malicious local attacker to elevate their permissions to take control of other portions of the NFX platform they… |
CVE-2018-0045 | High | 8.8 | 2018-10-10 | Receipt of a specific Draft-Rosen MVPN control packet may cause the routing protocol daemon (RPD) process to crash and restart or may lead to remote code execu… |
CVE-2018-0043 | High | 8.8 | 2018-10-10 | Receipt of a specific MPLS packet may cause the routing protocol daemon (RPD) process to crash and restart or may lead to remote code execution. By continuousl… |
CVE-2020-1613 | High | 8.6 | 2020-04-08 | A vulnerability in the BGP FlowSpec implementation may cause a Juniper Networks Junos OS device to terminate an established BGP session upon receiving a specif… |
CVE-2021-0253 | High | 7.8 | 2021-04-22 | NFX Series devices using Juniper Networks Junos OS are susceptible to a local command execution vulnerability thereby allowing an attacker to elevate their pri… |
CVE-2021-0252 | High | 7.8 | 2021-04-22 | NFX Series devices using Juniper Networks Junos OS are susceptible to a local code execution vulnerability thereby allowing an attacker to elevate their privil… |
CVE-2019-0057 | High | 7.8 | 2019-10-09 | An improper authorization weakness in Juniper Networks Junos OS allows a local authenticated attacker to bypass regular security controls to access the Junos D… |
CVE-2024-21586 | High | 7.5 | 2024-07-01 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series and NFX… |
CVE-2021-0206 | High | 7.5 | 2021-01-15 | A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS allows an attacker to send a specific packet causing the packet forwarding engine (PFE) t… |
CVE-2019-0043 | High | 7.5 | 2019-04-10 | In MPLS environments, receipt of a specific SNMP packet may cause the routing protocol daemon (RPD) process to crash and restart. By continuously sending a spe… |
CVE-2018-0049 | High | 7.5 | 2018-10-10 | A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS allows an attacker to cause the Junos OS kernel to crash. Continued receipt of this speci… |
CVE-2018-0022 | High | 7.5 | 2018-04-11 | A Junos device with VPLS routing-instances configured on one or more interfaces may be susceptible to an mbuf leak when processing a specific MPLS packet. Appr… |
CVE-2018-0020 | High | 7.5 | 2018-04-11 | Junos OS may be impacted by the receipt of a malformed BGP UPDATE which can lead to a routing process daemon (rpd) crash and restart. Receipt of a repeated mal… |
CVE-2018-0052 | High | 7.2 | 2018-10-10 | If RSH service is enabled on Junos OS and if the PAM authentication is disabled, a remote unauthenticated attacker can obtain root access to the device. RSH se… |
CVE-2023-28972 | Medium | 6.8 | 2023-04-17 | An Improper Link Resolution Before File Access vulnerability in console port access of Juniper Networks Junos OS on NFX Series allows an attacker to bypass con… |
CVE-2021-0289 | Medium | 6.5 | 2021-07-15 | When user-defined ARP Policer is configured and applied on one or more Aggregated Ethernet (AE) interface units, a Time-of-check Time-of-use (TOCTOU) Race Cond… |
CVE-2020-1688 | Medium | 6.5 | 2020-10-16 | On Juniper Networks SRX Series and NFX Series, a local authenticated user with access to the shell may obtain the Web API service private key that is used to p… |
CVE-2019-0069 | Medium | 5.9 | 2019-10-09 | On EX4600, QFX5100 Series, NFX Series, QFX10K Series, QFX5110, QFX5200 Series, QFX5110, QFX5200, QFX10K Series, vSRX, SRX1500, SRX4000 Series, vSRX, SRX1500, S… |