VYPR

OS Evolved

by Juniper Networks

CVEs (248)

  • CVE-2025-52958MedJul 11, 2025
    risk 0.34cvss 5.3epss 0.00

    A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS).On all Junos OS and Junos OS Evolved devices, when route validation is…

  • CVE-2025-21597MedApr 9, 2025
    risk 0.34cvss 5.3epss 0.00

    An Improper Check for Unusual or Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, logically adjacent BGP peer to cause Denial of Service (DoS). On all Junos OS and Junos OS Evolved…

  • CVE-2024-39536MedJul 11, 2024
    risk 0.34cvss 5.3epss 0.00

    A Missing Release of Memory after Effective Lifetime vulnerability in the Periodic Packet Management Daemon (ppmd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial-of-Service (DoS). When a BFD session configured…

  • CVE-2024-30390MedApr 12, 2024
    risk 0.34cvss 5.3epss 0.01

    An Improper Restriction of Excessive Authentication Attempts vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited Denial of Service (DoS) to the management plane. When an incoming connection was blocked because…

  • CVE-2024-30386MedApr 12, 2024
    risk 0.34cvss 5.3epss 0.00

    A Use-After-Free vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause l2ald to crash leading to a Denial-of-Service (DoS). In an EVPN-VXLAN scenario, when state…

  • CVE-2024-30409MedApr 12, 2024
    risk 0.34cvss 5.3epss 0.00

    An Improper Check for Unusual or Exceptional Conditions vulnerability in telemetry processing of Juniper Networks Junos OS and Junos OS Evolved allows a network-based authenticated attacker to cause the forwarding information base telemetry daemon (fibtd) to crash, leading to a…

  • CVE-2024-21590MedApr 12, 2024
    risk 0.34cvss 5.3epss 0.00

    An Improper Input Validation vulnerability in Juniper Tunnel Driver (jtd) and ICMP module of Juniper Networks Junos OS Evolved allows an unauthenticated attacker within the MPLS administrative domain to send specifically crafted packets to the Routing Engine (RE) to cause a…

  • CVE-2024-21596MedJan 12, 2024
    risk 0.34cvss 5.3epss 0.01

    A Heap-based Buffer Overflow vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network based attacker to cause a Denial of Service (DoS). If an attacker sends a specific BGP UPDATE message to the…

  • CVE-2023-28978MedApr 17, 2023
    risk 0.34cvss 5.3epss 0.00

    An Insecure Default Initialization of Resource vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network based attacker to read certain confidential information. In the default configuration it is possible to read confidential information about…

  • CVE-2023-22398MedJan 13, 2023
    risk 0.34cvss 5.3epss 0.00

    An Access of Uninitialized Pointer vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privileges to cause a Denial of Service (DoS). When an MPLS ping is performed on BGP LSPs, the…

  • CVE-2022-22238MedOct 18, 2022
    risk 0.34cvss 5.3epss 0.00

    An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS). When an incoming RESV message…

  • CVE-2022-22227MedOct 18, 2022
    risk 0.34cvss 5.3epss 0.01

    An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated network-based attacker to cause a partial Denial of Service (DoS). On receipt of specific…

  • CVE-2025-52989MedJul 11, 2025
    risk 0.33cvss 5.1epss 0.00

    An Improper Neutralization of Delimiters vulnerability in the UI of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with high privileges to modify the system configuration. A user with limited configuration and commit permissions, using a…

  • CVE-2024-39544MedOct 11, 2024
    risk 0.33cvss 5.0epss 0.00

    An Incorrect Default Permissions vulnerability in the command line interface (CLI) of Juniper Networks Junos OS Evolved allows a low privileged local attacker to view NETCONF traceoptions files, representing an exposure of sensitive information. On all Junos OS Evolved…

  • CVE-2024-21615MedApr 12, 2024
    risk 0.33cvss 5.0epss 0.00

    An Incorrect Default Permissions vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker to access confidential information on the system. On all Junos OS and Junos OS Evolved platforms, when NETCONF traceoptions are configured,…

  • CVE-2023-44201MedOct 13, 2023
    risk 0.33cvss 5.0epss 0.00

    An Incorrect Permission Assignment for Critical Resource vulnerability in a specific file of Juniper Networks Junos OS and Junos OS Evolved allows a local authenticated attacker to read configuration changes without having the permissions. When a user with the respective…

  • CVE-2023-36836MedJul 14, 2023
    risk 0.31cvss 4.7epss 0.00

    A Use of an Uninitialized Resource vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with low privileges to cause a Denial of Service (DoS). On all Junos OS and Junos OS Evolved platforms,…

  • CVE-2021-0298MedOct 19, 2021
    risk 0.31cvss 4.7epss 0.00

    A Race Condition in the 'show chassis pic' command in Juniper Networks Junos OS Evolved may allow an attacker to crash the port interface concentrator daemon (picd) process on the FPC, if the command is executed coincident with other system events outside the attacker's control,…

  • CVE-2026-21902Feb 25, 2026
    risk 0.00cvss epss 0.18

    An Incorrect Permission Assignment for Critical Resource vulnerability in the On-Box Anomaly detection framework of Juniper Networks Junos OS Evolved on PTX Series allows an unauthenticated, network-based attacker to execute code as root. The On-Box Anomaly detection framework…

  • CVE-2026-21921Jan 15, 2026
    risk 0.00cvss epss 0.00

    A Use After Free vulnerability in the chassis daemon (chassisd) of Juniper Networks Junos OS and Junos OS Evolved allows a network-based attacker authenticated with low privileges to cause a Denial-of-Service (DoS). When telemetry collectors are frequently subscribing and…

Page 12 of 13