Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Junos OS — Vulnerabilities & Security Advisories 660

All 660 CVE vulnerabilities found in Junos OS, with AI-generated Chinese analysis, references, and POCs.

Vendor: Juniper Networks

CVE IDTitleCVSSSeverityPublished
CVE-2022-22175 Junos OS: MX Series and SRX Series: The flowd daemon will crash if the SIP ALG is enabled and specific SIP messages are processed CWE-667 7.5 High2022-01-19
CVE-2022-22174 Junos OS: QFX5000 Series, EX4600: Device may run out of memory, causing traffic loss, upon receipt of specific IPv6 packets CWE-755 7.5 High2022-01-19
CVE-2022-22173 Junos OS: CRL failing to download causes a memory leak and ultimately a DoS CWE-401 7.5 High2022-01-19
CVE-2022-22172 Junos OS and Junos OS Evolved: An l2cpd memory leak can occur when specific LLDP packets are received leading to a DoS CWE-401 6.5 Medium2022-01-19
CVE-2022-22171 Junos OS: Specific packets over VXLAN cause FPC reset 7.5 High2022-01-19
CVE-2022-22170 Junos OS: Specific packets over VXLAN cause FPC memory leak and ultimately reset 7.5 High2022-01-19
CVE-2022-22169 Junos OS and Junos OS Evolved: OSPFv3 session might go into INIT state upon receipt of multiple crafted packets from a trusted neighbor device. 5.9 Medium2022-01-19
CVE-2022-22168 Junos OS: vMX and MX150: Specific packets might cause a memory leak and eventually an FPC reboot CWE-1287 6.5 Medium2022-01-19
CVE-2022-22167 Junos OS: SRX Series: If no-syn-check is enabled, traffic classified as UNKNOWN gets permitted by pre-id-default-policy CWE-863 7.2 High2022-01-19
CVE-2022-22166 Junos OS: An rpd core will occur if BGP update tracing is configured and an update containing a malformed BGP SR-TE policy tunnel attribute is received CWE-1284 6.5 Medium2022-01-19
CVE-2022-22163 Junos OS: jdhcpd crashes upon receipt of a specific DHCPv6 packet CWE-20 7.4 High2022-01-19
CVE-2022-22162 Junos OS: A low privileged user can elevate their privileges to the ones of the highest privileged j-web user logged in CWE-209 7.3 High2022-01-19
CVE-2022-22161 Junos OS: MX104 might become unresponsive if the out-of-band management port receives a flood of traffic CWE-400 7.5 High2022-01-19
CVE-2022-22160 Junos OS: MX Series: The bbe-smgd process crashes if an unsupported configuration exists and a PPPoE client sends a specific message CWE-391 6.5 Medium2022-01-19
CVE-2022-22159 Junos OS: An attacker sending crafted packets can cause a traffic and CPU Denial of Service (DoS). 7.5 High2022-01-19
CVE-2022-22157 Junos OS: SRX Series: Traffic classification vulnerability when 'no-syn-check' is enabled CWE-863 7.2 High2022-01-19
CVE-2022-22156 Junos OS: Certificate validation is skipped when fetching system scripts from a HTTPS URL CWE-358 6.5 Medium2022-01-19
CVE-2022-22155 Junos OS: ACX5448: FPC memory leak due to IPv6 neighbor flaps CWE-400 6.5 Medium2022-01-19
CVE-2022-22154 Junos Fusion: A Satellite Device can be controlled by rewiring it to a foreign AD causing a DoS CWE-642 6.8 Medium2022-01-19
CVE-2022-22153 SRX Series and MX Series with SPC3: A high percentage of fragments might lead to high latency or packet drops CWE-407 7.5 High2022-01-19
CVE-2021-31386 Junos OS: When using J-Web with HTTP an attacker may retrieve encryption keys via Person-in-the-Middle attacks. CWE-311 5.3 Medium2021-10-19
CVE-2021-31385 Junos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root CWE-22 8.8 High2021-10-19
CVE-2021-31384 Junos OS: SRX Series: Under a specific device configuration an attacker can access the devices J-Web management services from any interface, regardless of security settings protecting the service CWE-285 7.2 High2021-10-19
CVE-2021-31383 Junos OS and Junos OS Evolved: In Point to MultiPoint (P2MP) scenarios receipt of various crafted packets causes RPD to core. 7.5 High2021-10-19
CVE-2021-31382 Junos OS: PTX1000 System, PTX10002-60C System: After upgrading, configured firewall filters may be applied on incorrect interfaces CWE-362 6.5 Medium2021-10-19
CVE-2021-31379 Junos OS: MX Series: MPC 7/8/9/10/11 cards with MAP-E: PFE halts when an attacker sends malformed IPv4 or IPv6 traffic inside the MAP-E tunnel. CWE-696 7.5 High2021-10-19
CVE-2021-31378 Junos OS: An attacker sending spoofed RADIUS messages to a Junos OS device configured for broadband services may cause broadband subscribers to remain stuck in a "Terminating" state. CWE-772 6.8 Medium2021-10-19
CVE-2021-31377 Junos OS: A local authenticated attacker can cause RPD to core CWE-732 5.5 Medium2021-10-19
CVE-2021-31376 Junos OS: ACX Series: Packet Forwarding Engine manager (FXPC) process crashes when processing DHCPv6 packets CWE-20 7.5 High2021-10-19
CVE-2021-31375 Junos OS: Receipt of a specific BGP update may cause RPKI policy-checks to be bypassed CWE-358 7.2 High2021-10-19

All 660 known CVE vulnerabilities affecting Junos OS with full Chinese analysis, references, and POCs where available.