Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Junos OS — Vulnerabilities & Security Advisories 660

All 660 CVE vulnerabilities found in Junos OS, with AI-generated Chinese analysis, references, and POCs.

Vendor: Juniper Networks

CVE IDTitleCVSSSeverityPublished
CVE-2019-0071 Junos OS: EX2300, EX3400 Series: Veriexec signature checking not enforced in specific versions of Junos OS CWE-347 7.8 High2019-10-09
CVE-2019-0073 Junos OS: PKI key pairs are exported with insecure file permissions CWE-732 6.6 Medium2019-10-09
CVE-2019-0074 Junos OS: NFX150 Series, QFX10K Series, EX9200 Series, MX Series, PTX Series: Path traversal vulnerability in NFX150 and NG-RE leads to information disclosure. 5.5 Medium2019-10-09
CVE-2019-0075 Junos OS: SRX Series: Denial of Service vulnerability in srxpfe related to PIM 7.5 High2019-10-09
CVE-2019-0047 Junos OS: Persistent XSS vulnerability in J-Web CWE-79 8.8 High2019-10-09
CVE-2019-0050 Junos OS: SRX1500: Denial of service due to crash of srxpfe process under heavy traffic conditions. 7.5 High2019-10-09
CVE-2019-0051 SRX5000 Series: Denial of Service vulnerability in SSL-Proxy feature. CWE-755 6.5 Medium2019-10-09
CVE-2019-0054 Junos OS: SRX Series: An attacker may be able to perform Man-in-the-Middle (MitM) attacks during app-id signature updates. CWE-295 6.8 Medium2019-10-09
CVE-2019-0055 Junos OS: SRX Series: An attacker may cause flowd to crash by sending certain valid SIP traffic to a device with SIP ALG enabled. CWE-130 7.5 High2019-10-09
CVE-2019-0056 Junos OS: MX Series: An MPC10 Denial of Service (DoS) due to OSPF states transitioning to Down, causes traffic to stop forwarding through the device. CWE-410 7.5 High2019-10-09
CVE-2019-0057 NFX Series: An attacker may be able to take control of the JDM application and subsequently the entire system. 7.8 High2019-10-09
CVE-2019-0058 Junos OS: SRX Series: A weakness in the Veriexec subsystem may allow privilege escalation. 7.8 High2019-10-09
CVE-2019-0046 Junos OS: EX4300 Series: Denial of Service upon receipt of large number of specific valid packets on management interface. CWE-400 6.5 -2019-07-11
CVE-2019-0048 EX4300 Series: When a firewall filter is applied to a loopback interface, other firewall filters for multicast traffic may fail CWE-200--2019-07-11
CVE-2019-0049 Junos OS: RPD process crashes when BGP peer restarts CWE-404 7.5 -2019-07-11
CVE-2019-0052 SRX Series: srxpfe process crash while JSF/UTM module parses specific HTTP packets CWE-404 7.5 -2019-07-11
CVE-2019-0053 Junos OS: Insufficient validation of environment variables in telnet client may lead to stack-based buffer overflow CWE-121 7.8 -2019-07-11
CVE-2019-0041 Junos OS: EX4300-MP Series: IP transit traffic can reach the control plane via loopback interface. CWE-284 8.6 -2019-04-10
CVE-2019-0043 Junos OS: RPD process crashes upon receipt of a specific SNMP packet CWE-404 7.5 -2019-04-10
CVE-2019-0044 Junos OS: SRX5000 series: Kernel crash (vmcore) upon receipt of a specific packet on fxp0 interface CWE-404 7.5 -2019-04-10
CVE-2019-0008 QFX5000 Series, EX4300, EX4600: A stack buffer overflow vulnerability in Packet Forwarding Engine manager (FXPC) process CWE-121 9.8 -2019-04-10
CVE-2019-0019 BGP packets can trigger rpd crash when BGP tracing is enabled. CWE-404 7.5 -2019-04-10
CVE-2019-0028 Junos OS: RPD process crashes due to specific BGP peer restarts condition. CWE-404 7.5 -2019-04-10
CVE-2019-0031 Junos OS: jdhcpd daemon memory consumption Denial of Service when receiving specific IPv6 DHCP packets. CWE-400 6.5 -2019-04-10
CVE-2019-0033 SRX Series: A remote attacker may cause a high CPU Denial of Service to the device when proxy ARP is configured. CWE-400 7.5 -2019-04-10
CVE-2019-0035 Junos OS: 'set system ports console insecure' allows root password recovery on OAM volumes CWE-501 6.8 -2019-04-10
CVE-2019-0036 Junos OS: Firewall filter terms named "internal-1" and "internal-2" being ignored CWE-284 9.8 -2019-04-10
CVE-2019-0037 Junos OS: jdhcpd crash upon receipt of crafted DHCPv6 solicit message 7.5 -2019-04-10
CVE-2019-0038 SRX Series: Crafted packets destined to fxp0 management interface on SRX340/SRX345 devices can lead to DoS CWE-400 7.5 -2019-04-10
CVE-2019-0039 Junos OS: Login credentials are vulnerable to brute force attacks through the REST API CWE-307 8.1 -2019-04-10

All 660 known CVE vulnerabilities affecting Junos OS with full Chinese analysis, references, and POCs where available.