Junos OS — Vulnerabilities & Security Advisories 660

All 660 CVE vulnerabilities found in Junos OS, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Paused
CVE-2026-33791	Junos OS and Junos OS Evolved: Execution of crafted CLI commands allows for arbitrary shell injection as root CWE-78	6.7	Medium	2026-04-09
CVE-2026-33790	Junos OS: SRX Series: In a NAT64 configuration, receipt of a specific, malformed ICMPv6 packet will cause the srxpfe process to crash and restart. CWE-754	7.5	High	2026-04-09
CVE-2026-33787	Junos OS: SRX1500, SRX4100, SRX4200, SRX4600: When a specific show command is executed chassisd crashes CWE-754	5.5	Medium	2026-04-09
CVE-2026-33785	Junos OS: MX Series: Missing Authorization for specific 'request' CLI commands in a JDM/CSDS scenario CWE-862	8.8	High	2026-04-09
CVE-2026-33781	Junos OS: EX Series, QFX Series: In a VXLAN scenario when specific control protocol packets are received, memory leaks and eventually no traffic is passed CWE-754	6.5	Medium	2026-04-09
CVE-2026-33778	Junos OS: SRX Series, MX Series: When a specifically malformed first ISAKMP packet is received kmd/iked crashes CWE-1286	7.5	High	2026-04-09
CVE-2026-33776	Junos OS and Junos OS Evolved: Specific low privileged CLI command exposes sensitive information CWE-862	5.5	Medium	2026-04-09
CVE-2026-33774	Junos OS: MX Series: Firewall filters on lo0.<non-0> in the default routing instance are not in effect CWE-754	6.5	Medium	2026-04-09
CVE-2026-33797	Junos OS and Junos OS Evolved: An attacker sending a specific genuine BGP packet causes a BGP reset CWE-20	7.4	High	2026-04-09
CVE-2026-33779	Junos OS: SRX Series: Insufficient certificate verification for device to SD cloud communication CWE-296	6.5	Medium	2026-04-09
CVE-2026-33775	Junos OS: MX Series: Mismatch between configured and received packet types causes memory leak in bbe-smgd CWE-401	6.5	Medium	2026-04-09
CVE-2026-33782	Junos OS: MX Series: In specific DHCPv6 scenarios jdhcpd memory increases continuously with subscriber logouts CWE-401	6.5	Medium	2026-04-09
CVE-2026-33780	Junos OS and Junos OS Evolved: In an EVPN-MPLS scenario churn of ESI routes causes a memory leak in l2ald CWE-401	6.5	Medium	2026-04-09
CVE-2026-33773	Junos OS: EX Series, QFX Series: If the same egress filter is configured on both an IRB and a physical interface one of those is not applied CWE-1419	5.8	Medium	2026-04-09
CVE-2026-33786	Junos OS: SRX1600, SRX2300, SRX4300: When a specific show command is executed chassisd crashes CWE-754	5.5	Medium	2026-04-09
CVE-2026-21916	Junos OS: A low privileged user can escalate their privileges so that they can login as root CWE-61	7.3	High	2026-04-09
CVE-2026-21919	Junos OS and Junos OS Evolved: A high frequency of connecting and disconnecting NETCONF sessions causes management unavailability CWE-821	6.5	Medium	2026-04-09
CVE-2026-33793	Junos OS and Junos OS Evolved: When an unsigned Python op script configuration is present, a local low privileged user can compromise the system CWE-250	7.8	High	2026-04-09
CVE-2025-30650	Junos OS: Privileged local user can gain access to a Linux-based FPC as root CWE-306	6.7	Medium	2026-04-08
CVE-2026-21921	Junos OS and Junos OS Evolved: When telemetry collectors are frequently subscribing and unsubscribing to sensors chassisd or rpd will crash CWE-416	6.5	Medium	2026-01-15
CVE-2026-21920	Junos OS: SRX Series: If a specific request is processed by the DNS subsystem flowd will crash CWE-252	7.5	High	2026-01-15
CVE-2026-21918	Junos OS: SRX and MX Series: When TCP packets occur in a specific sequence flowd crashes CWE-415	7.5	High	2026-01-15
CVE-2026-21917	Junos OS: SRX Series: Specifically malformed SSL packet causes FPC crash CWE-1286	7.5	High	2026-01-15
CVE-2026-21914	Junos OS: SRX Series: A specifically malformed GTP message will cause an FPC crash CWE-667	7.5	High	2026-01-15
CVE-2026-21913	Junos OS: EX4000: A high volume of traffic destined to the device leads to a crash and restart CWE-1419	7.5	High	2026-01-15
CVE-2026-21912	Junos OS: MX10k Series: 'show system firmware' CLI command may lead to LC480 or LC2101 line card reset CWE-367	5.5	Medium	2026-01-15
CVE-2026-21910	Junos OS: EX4k Series, QFX5k Series: In an EVPN-VXLAN configuration link flaps cause Inter-VNI traffic drop CWE-754	6.5	Medium	2026-01-15
CVE-2026-21909	Junos OS and Junos OS Evolved: Receipt of specific IS-IS update packet causes memory leak leading to RPD crash CWE-401	6.5	Medium	2026-01-15
CVE-2026-21908	Junos OS and Junos OS Evolved: Use after free vulnerability In 802.1X authentication daemon can cause crash of the dot1xd process CWE-416	7.1	High	2026-01-15
CVE-2026-21906	Junos OS: SRX Series: With GRE performance acceleration enabled, receipt of a specific ICMP packet causes the PFE to crash CWE-755	7.5	High	2026-01-15

All 660 known CVE vulnerabilities affecting Junos OS with full Chinese analysis, references, and POCs where available.

Support Us — Your donation helps us keep running

Junos OS — Vulnerabilities & Security Advisories 660