Juniper Srx240m
34 CVEs affecting Juniper Srx240m. Latest disclosed: 2024-07-11. Critical: 1, High: 20.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-36845 | Critical | 9.8 | 2023-08-17 | A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-bas… |
CVE-2024-21620 | High | 8.8 | 2024-01-25 | An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and E… |
CVE-2018-0045 | High | 8.8 | 2018-10-10 | Receipt of a specific Draft-Rosen MVPN control packet may cause the routing protocol daemon (RPD) process to crash and restart or may lead to remote code execu… |
CVE-2016-1286 | High | 8.6 | 2016-03-09 | named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via… |
CVE-2024-39540 | High | 7.5 | 2024-07-11 | An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on SRX Series, and MX… |
CVE-2024-39529 | High | 7.5 | 2024-07-11 | A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthent… |
CVE-2024-21606 | High | 7.5 | 2024-01-12 | A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series allows a network-based, unauthenticated attacker… |
CVE-2023-28985 | High | 7.5 | 2023-07-14 | An Improper Validation of Syntactic Correctness of Input vulnerability in Intrusion Detection and Prevention (IDP) of Juniper Networks SRX Series and MX Series… |
CVE-2023-36831 | High | 7.5 | 2023-07-14 | An Improper Check or Handling of Exceptional Conditions vulnerability in the UTM (Unified Threat Management) Web-Filtering feature of Juniper Networks Junos OS… |
CVE-2023-22417 | High | 7.5 | 2023-01-13 | A Missing Release of Memory after Effective Lifetime vulnerability in the Flow Processing Daemon (flowd) of Juniper Networks Junos OS allows a network-based, u… |
CVE-2023-22416 | High | 7.5 | 2023-01-13 | A Buffer Overflow vulnerability in SIP ALG of Juniper Networks Junos OS allows a network-based, unauthenticated attacker to cause a Denial of Service (DoS). On… |
CVE-2023-22415 | High | 7.5 | 2023-01-13 | An Out-of-Bounds Write vulnerability in the H.323 ALG of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause Denial of Service… |
CVE-2023-22412 | High | 7.5 | 2023-01-13 | An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC card and SRX Series allows an unauthenticated… |
CVE-2023-22411 | High | 7.5 | 2023-01-13 | An Out-of-Bounds Write vulnerability in Flow Processing Daemon (flowd) of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause… |
CVE-2023-22394 | High | 7.5 | 2023-01-13 | An Improper Handling of Unexpected Data Type vulnerability in the handling of SIP calls in Juniper Networks Junos OS on SRX Series and MX Series platforms allo… |
CVE-2022-22236 | High | 7.5 | 2022-10-18 | An Access of Uninitialized Pointer vulnerability in SIP Application Layer Gateway (ALG) of Juniper Networks Junos OS on SRX Series and MX Series allows an unau… |
CVE-2022-22232 | High | 7.5 | 2022-10-18 | A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based at… |
CVE-2022-22218 | High | 7.5 | 2022-10-18 | On SRX Series devices, an Improper Check for Unusual or Exceptional Conditions when using Certificate Management Protocol Version 2 (CMPv2) auto re-enrollment… |
CVE-2017-3145 | High | 7.5 | 2019-01-16 | BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free error that can trigger an ass… |
CVE-2018-0049 | High | 7.5 | 2018-10-10 | A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS allows an attacker to cause the Junos OS kernel to crash. Continued receipt of this speci… |