VYPR

SRX Series

by Juniper Networks

CVEs (41)

  • CVE-2017-2343CriJul 17, 2017
    risk 0.65cvss 10.0epss 0.03

    The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to provide simple integration of user profiles on top of the existing firewall polices. As part of an internal security review of the UserFW services…

  • CVE-2020-1654CriJul 17, 2020
    risk 0.64cvss 9.8epss 0.02

    On Juniper Networks SRX Series with ICAP (Internet Content Adaptation Protocol) redirect service enabled, processing a malformed HTTP message can lead to a Denial of Service (DoS) or Remote Code Execution (RCE) Continued processing of this malformed HTTP message may result in an…

  • CVE-2020-1647CriJul 17, 2020
    risk 0.64cvss 9.8epss 0.03

    On Juniper Networks SRX Series with ICAP (Internet Content Adaptation Protocol) redirect service enabled, a double free vulnerability can lead to a Denial of Service (DoS) or Remote Code Execution (RCE) due to processing of a specific HTTP message. Continued processing of this…

  • CVE-2017-10605HigJul 17, 2017
    risk 0.56cvss 8.6epss 0.02

    On all vSRX and SRX Series devices, when the DHCP or DHCP relay is configured, specially crafted packet might cause the flowd process to crash, halting or interrupting traffic from flowing through the device(s). Repeated crashes of the flowd process may constitute an extended…

  • CVE-2025-30658HigApr 9, 2025
    risk 0.49cvss 7.5epss 0.00

    A Missing Release of Memory after Effective Lifetime vulnerability in the Anti-Virus processing of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). On all SRX platforms with Anti-Virus enabled, if a…

  • CVE-2025-30645HigApr 9, 2025
    risk 0.49cvss 7.5epss 0.00

    A NULL Pointer Dereference vulnerability in the flow daemon (flowd) of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack (DS) Lite tunnel to crash the flowd process, resulting in a Denial of Service…

  • CVE-2024-39551HigJul 11, 2024
    risk 0.49cvss 7.5epss 0.00

    An Uncontrolled Resource Consumption vulnerability in the H.323 ALG (Application Layer Gateway) of  Juniper Networks Junos OS on SRX Series and MX Series with SPC3 and MS-MPC/MIC, allows an unauthenticated network-based attacker to send specific packets causing traffic loss…

  • CVE-2024-21586HigJul 1, 2024
    risk 0.49cvss 7.5epss 0.01

    An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series and NFX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). If an affected device…

  • CVE-2023-28985HigJul 14, 2023
    risk 0.49cvss 7.5epss 0.01

    An Improper Validation of Syntactic Correctness of Input vulnerability in Intrusion Detection and Prevention (IDP) of Juniper Networks SRX Series and MX Series allows an unauthenticated, network-based attacker to cause Denial of Service (DoS). Continued receipt of this specific…

  • CVE-2023-36831HigJul 14, 2023
    risk 0.49cvss 7.5epss 0.01

    An Improper Check or Handling of Exceptional Conditions vulnerability in the UTM (Unified Threat Management) Web-Filtering feature of Juniper Networks Junos OS on SRX Series causes a jbuf memory leak to occur when accessing certain websites, eventually leading to a Denial of…

  • CVE-2023-22412HigJan 13, 2023
    risk 0.49cvss 7.5epss 0.00

    An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series with MS-MPC or MS-MIC card and SRX Series allows an unauthenticated, network-based attacker to cause a flow processing daemon (flowd) crash and thereby a Denial of Service (DoS). Continued…

  • CVE-2022-22232HigOct 18, 2022
    risk 0.49cvss 7.5epss 0.01

    A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). On SRX Series If Unified Threat Management (UTM) Enhanced Content Filtering…

  • CVE-2022-22218HigOct 18, 2022
    risk 0.49cvss 7.5epss 0.00

    On SRX Series devices, an Improper Check for Unusual or Exceptional Conditions when using Certificate Management Protocol Version 2 (CMPv2) auto re-enrollment, allows a network-based, unauthenticated attacker to cause a Denial of Service (DoS) by crashing the pkid process. The…

  • CVE-2022-22205HigJul 20, 2022
    risk 0.49cvss 7.5epss 0.01

    A Missing Release of Memory after Effective Lifetime vulnerability in the Application Quality of Experience (appqoe) subsystem of the PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated network based attacker to cause a Denial of Service (DoS). Upon…

  • CVE-2022-22198HigApr 14, 2022
    risk 0.49cvss 7.5epss 0.01

    An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service (DoS). Continued receipt of these specific packets will cause a sustained Denial of Service condition. On…

  • CVE-2022-22185HigApr 14, 2022
    risk 0.49cvss 7.5epss 0.01

    A vulnerability in Juniper Networks Junos OS on SRX Series, allows a network-based unauthenticated attacker to cause a Denial of Service (DoS) by sending a specific fragmented packet to the device, resulting in a flowd process crash, which is responsible for packet forwarding.…

  • CVE-2021-0230HigApr 22, 2021
    risk 0.49cvss 7.5epss 0.01

    On Juniper Networks SRX Series devices with link aggregation (lag) configured, executing any operation that fetches Aggregated Ethernet (AE) interface statistics, including but not limited to SNMP GET requests, causes a slow kernel memory leak. If all the available memory is…

  • CVE-2021-0206HigJan 15, 2021
    risk 0.49cvss 7.5epss 0.01

    A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS allows an attacker to send a specific packet causing the packet forwarding engine (PFE) to crash and restart, resulting in a Denial of Service (DoS). By continuously sending these specific packets, an attacker…

  • CVE-2020-1684HigOct 16, 2020
    risk 0.49cvss 7.5epss 0.01

    On Juniper Networks SRX Series configured with application identification inspection enabled, receipt of specific HTTP traffic can cause high CPU load utilization, which could lead to traffic interruption. Application identification is enabled by default and is automatically…

  • CVE-2020-1657HigOct 16, 2020
    risk 0.49cvss 7.5epss 0.01

    On SRX Series devices, a vulnerability in the key-management-daemon (kmd) daemon of Juniper Networks Junos OS allows an attacker to spoof packets targeted to IPSec peers before a security association (SA) is established thereby causing a failure to set up the IPSec channel.…

Page 1 of 3

VYPR — Vulnerability Intelligence