VYPR

Vendor CVEs

Juniper Networks

All CVEs

1,081 total · sorted by risk
  • CVE-2017-10623HigOct 13, 2017
    risk 0.46cvss 7.1epss 0.01

    Lack of authentication and authorization of cluster messages in Juniper Networks Junos Space may allow a man-in-the-middle type of attacker to intercept, inject or disrupt Junos Space cluster operations between two nodes. Affected releases are Juniper Networks Junos Space all…

  • CVE-2016-1261HigOct 13, 2017
    risk 0.46cvss 7.1epss 0.00

    J-Web does not validate certain input that may lead to cross-site request forgery (CSRF) issues or cause a denial of J-Web service (DoS).

  • CVE-2017-10603HigJul 17, 2017
    risk 0.46cvss 7.0epss 0.00

    An XML injection vulnerability in Junos OS CLI can allow a locally authenticated user to elevate privileges and run arbitrary commands as the root user. This issue was found during internal product security testing. Affected releases are Juniper Networks Junos OS 15.1X53 prior…

  • CVE-2017-10602HigJul 17, 2017
    risk 0.46cvss 7.0epss 0.00

    A buffer overflow vulnerability in Junos OS CLI may allow a local authenticated user with read only privileges and access to Junos CLI, to execute code with root privileges. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D46 on EX2200/VC,…

  • CVE-2026-33791MedApr 9, 2026
    risk 0.44cvss 6.7epss 0.01

    An OS Command Injection vulnerability in the CLI processing of Juniper Networks Junos OS and Junos OS Evolved allows a local, high-privileged attacker executing specific, crafted CLI commands to inject arbitrary shell commands as root, leading to a complete compromise of the…

  • CVE-2025-30650MedApr 8, 2026
    risk 0.44cvss 6.7epss 0.00

    A Missing Authentication for Critical Function vulnerability in command processing of Juniper Networks Junos OS allows a privileged local attacker to gain access to Linux-based line cards as root. This issue affects systems running Junos OS using Linux-based line cards.…

  • CVE-2016-1267MedApr 15, 2016
    risk 0.44cvss 6.7epss 0.00

    Race condition in the RPC functionality in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 13.2 before 13.2R8, 13.2X51 before 13.2X51-D39, 13.3 before 13.3R7, 14.1 before 14.1R6,…

  • CVE-2026-33783MedApr 9, 2026
    risk 0.42cvss 6.5epss 0.00

    A Function Call With Incorrect Argument Type vulnerability in the sensor interface of Juniper Networks Junos OS Evolved on PTX Series allows a network-based, authenticated attacker with low privileges to cause a complete Denial of Service (DoS). If colored SRTE policy tunnels…

  • CVE-2026-33782MedApr 9, 2026
    risk 0.42cvss 6.5epss 0.00

    A Missing Release of Memory after Effective Lifetime vulnerability in the DHCP daemon (jdhcpd) of Juniper Networks Junos OS on MX Series, allows an adjacent, unauthenticated attacker to cause a memory leak, that will eventually cause a complete Denial-of-Service (DoS). In a…

  • CVE-2026-33781MedApr 9, 2026
    risk 0.42cvss 6.5epss 0.00

    An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on specific EX and QFX Series devices allow an unauthenticated, adjacent attacker to cause a complete Denial of Service (DoS). On EX4k, and…

  • CVE-2026-33780MedApr 9, 2026
    risk 0.42cvss 6.5epss 0.00

    A Missing Release of Memory after Effective Lifetime vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a memory leak ultimately leading to a Denial of Service…

  • CVE-2026-33779MedApr 9, 2026
    risk 0.42cvss 6.5epss 0.00

    An Improper Following of a Certificate's Chain of Trust vulnerability in J-Web of Juniper Networks Junos OS on SRX Series allows a PITM to intercept the communication of the device and get access to confidential information and potentially modify it. When an SRX device is…

  • CVE-2026-33775MedApr 9, 2026
    risk 0.42cvss 6.5epss 0.00

    A Missing Release of Memory after Effective Lifetime vulnerability in the BroadBand Edge subscriber management daemon (bbe-smgd) of Juniper Networks Junos OS on MX Series allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS). If the authentication…

  • CVE-2026-21919MedApr 9, 2026
    risk 0.42cvss 6.5epss 0.00

    An Incorrect Synchronization vulnerability in the management daemon (mgd) of Juniper Networks Junos OS and Junos OS Evolved allows a network-based attacker with low privileges to cause a complete Denial-of-Service (DoS) of the management plane. When NETCONF sessions are quickly…

  • CVE-2025-59969MedApr 9, 2026
    risk 0.42cvss 6.5epss 0.00

    A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in the advanced forwarding toolkit (evo-aftmand/evo-pfemand) of Juniper Networks Junos OS Evolved on PTX Series or QFX5000 Series allows an unauthenticated, adjacent attacker to cause a Denial…

  • CVE-2018-0039MedJul 11, 2018
    risk 0.42cvss 6.5epss 0.01

    Juniper Networks Contrail Service Orchestration releases prior to 4.0.0 have Grafana service enabled by default with hardcoded credentials. These credentials allow network based attackers unauthorized access to information stored in Grafana or exploit other weaknesses or…

  • CVE-2018-0013MedJan 10, 2018
    risk 0.42cvss 6.5epss 0.01

    A local file inclusion vulnerability in Juniper Networks Junos Space Network Management Platform may allow an authenticated user to retrieve files from the system.

  • CVE-2018-0010MedJan 10, 2018
    risk 0.42cvss 6.5epss 0.01

    A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not have SSH access to a device to reuse the URL that was created for another user to perform SSH access. Affected releases are all versions of Junos Space Security Director prior to…

  • CVE-2018-0006MedJan 10, 2018
    risk 0.42cvss 6.5epss 0.01

    A high rate of VLAN authentication attempts sent from an adjacent host on the local broadcast domain can trigger high memory utilization by the BBE subscriber management daemon (bbe-smgd), and lead to a denial of service condition. The issue was caused by attempting to process…

  • CVE-2018-0004MedJan 10, 2018
    risk 0.42cvss 6.5epss 0.01

    A sustained sequence of different types of normal transit traffic can trigger a high CPU consumption denial of service condition in the Junos OS register and schedule software interrupt handler subsystem when a specific command is issued to the device. This affects one or more…

  • CVE-2018-0003MedJan 10, 2018
    risk 0.42cvss 6.5epss 0.01

    A specially crafted MPLS packet received or processed by the system, on an interface configured with MPLS, will store information in the system memory. Subsequently, if this stored information is accessed, this may result in a kernel crash leading to a denial of service.…

  • CVE-2017-10611MedOct 13, 2017
    risk 0.42cvss 6.5epss 0.01

    If extended statistics are enabled via 'set chassis extended-statistics', when executing any operation that fetches interface statistics, including but not limited to SNMP GET requests, the pfem process or the FPC may crash and restart. Repeated crashes of PFE processing can…

  • CVE-2017-2347MedJul 17, 2017
    risk 0.42cvss 6.5epss 0.02

    A denial of service vulnerability in rpd daemon of Juniper Networks Junos OS allows a malformed MPLS ping packet to crash the rpd daemon if MPLS OAM is configured. Repeated crashes of the rpd daemon can result in an extended denial of service condition for the device. The…

  • CVE-2017-2308MedMay 30, 2017
    risk 0.42cvss 6.5epss 0.01

    An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to read arbitrary files on the device.

  • CVE-2017-2333MedApr 24, 2017
    risk 0.42cvss 6.5epss 0.01

    A persistent denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious, network-based, authenticated attacker to consume enough system resources to cause a persistent denial of service by…

  • CVE-2017-2326MedApr 24, 2017
    risk 0.42cvss 6.5epss 0.01

    An information disclosure vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unprivileged, authenticated, network-based attacker to replicate the underlying Junos OS VM and all data it maintains to their local…

  • CVE-2017-2325MedApr 24, 2017
    risk 0.42cvss 6.5epss 0.01

    A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to cause a buffer overflow leading to a denial of service.

  • CVE-2017-2318MedApr 24, 2017
    risk 0.42cvss 6.5epss 0.01

    A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to read log files which will compromise the integrity of the system, or provide elevation of privileges.

  • CVE-2017-2316MedApr 24, 2017
    risk 0.42cvss 6.5epss 0.00

    A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to cause a buffer overflow leading to a denial of service.

  • CVE-2017-2312MedApr 24, 2017
    risk 0.42cvss 6.5epss 0.02

    On Juniper Networks devices running Junos OS affected versions and with LDP enabled, a specific LDP packet destined to the RE (Routing Engine) will consume a small amount of the memory allocated for the rpd (routing protocol daemon) process. Over time, repeatedly receiving this…

  • CVE-2016-4931MedMar 20, 2017
    risk 0.42cvss 6.5epss 0.01

    XML entity injection in Junos Space before 15.2R2 allows attackers to cause a denial of service.

  • CVE-2016-1280MedSep 9, 2016
    risk 0.42cvss 6.5epss 0.01

    PKId in Juniper Junos OS before 12.1X44-D52, 12.1X46 before 12.1X46-D37, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R12, 12.3X48 before 12.3X48-D20, 13.3 before 13.3R10, 14.1 before 14.1R8, 14.1X53 before 14.1X53-D40, 14.2 before 14.2R7, 15.1 before 15.1R4, 15.1X49 before…

  • CVE-2016-1275MedSep 9, 2016
    risk 0.42cvss 6.5epss 0.01

    Juniper Junos OS before 13.3R9, 14.1R6 before 14.1R6-S1, and 14.1 before 14.1R7, when configured with VPLS routing-instances, allows remote attackers to obtain sensitive mbuf information by injecting a flood of Ethernet frames with IPv6 MAC addresses directly into a connected…

  • CVE-2018-0025MedJul 11, 2018
    risk 0.40cvss 6.1epss 0.01

    When an SRX Series device is configured to use HTTP/HTTPS pass-through authentication services, a client sending authentication credentials in the initial HTTP/HTTPS session is at risk that these credentials may be captured during follow-on HTTP/HTTPS requests by a malicious…

  • CVE-2018-0008MedJan 10, 2018
    risk 0.40cvss 6.2epss 0.00

    An unauthenticated root login may allow upon reboot when a commit script is used. A commit script allows a device administrator to execute certain instructions during commit, which is configured under the [system scripts commit] stanza. Certain commit scripts that work without a…

  • CVE-2017-2307MedMay 30, 2017
    risk 0.40cvss 6.1epss 0.01

    A reflected cross site scripting vulnerability in the administrative interface of Juniper Networks Junos Space versions prior to 16.1R1 may allow remote attackers to steal sensitive information or perform certain administrative actions on Junos Space.

  • CVE-2017-2330MedApr 24, 2017
    risk 0.40cvss 6.2epss 0.00

    A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, local user, to create a fork bomb scenario, also known as a rabbit virus, or wabbit, which will create processes that…

  • CVE-2017-2329MedApr 24, 2017
    risk 0.40cvss 6.2epss 0.00

    An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unprivileged, authenticated, user to execute certain specific unprivileged system files capable of causing widespread denials of…

  • CVE-2016-4930MedMar 20, 2017
    risk 0.40cvss 6.1epss 0.01

    Cross-site scripting (XSS) vulnerability in Junos Space before 15.2R2 allows remote attackers to steal sensitive information or perform certain administrative actions.

  • CVE-2016-1276MedAug 5, 2016
    risk 0.39cvss 5.9epss 0.02

    Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D23, 12.3X48 before 12.3X48-D25, and 15.1X49 before 15.1X49-D40 on a High-End SRX-Series chassis system with one or more Application Layer Gateways (ALGs) enabled allow remote attackers to cause a denial of service (CPU…

  • CVE-2026-33773MedApr 9, 2026
    risk 0.38cvss 5.8epss 0.00

    An Incorrect Initialization of Resource vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on specific EX Series and QFX Series device allows an unauthenticated, network-based attacker to cause an integrity impact to downstream networks. When the…

  • CVE-2017-10618MedOct 13, 2017
    risk 0.38cvss 5.9epss 0.02

    When the 'bgp-error-tolerance' feature â€" designed to help mitigate remote session resets from malformed path attributes â€" is enabled, a BGP UPDATE containing a specifically crafted set of transitive attributes can cause the RPD routing process to crash…

  • CVE-2017-2346MedJul 17, 2017
    risk 0.38cvss 5.9epss 0.01

    An MS-MPC or MS-MIC Service PIC may crash when large fragmented packets are passed through an Application Layer Gateway (ALG). Repeated crashes of the Service PC can result in an extended denial of service condition. The issue can be seen only if NAT or stateful-firewall rules…

  • CVE-2017-2309MedMay 30, 2017
    risk 0.38cvss 5.9epss 0.01

    On Juniper Networks Junos Space versions prior to 16.1R1 when certificate based authentication is enabled for the Junos Space cluster, some restricted web services are accessible over the network. This represents an information leak risk.

  • CVE-2016-1277MedSep 9, 2016
    risk 0.38cvss 5.9epss 0.02

    Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D40, 12.3X48 before 12.3X48-D30, 13.3 before 13.3R9, 14.1 before 14.1R8, 14.1X53 before 14.1X53-D40, 14.2 before 14.2R6, 15.1 before 15.1F6 or 15.1R3, and 15.1X49 before 15.1X49-D40, when configured with a GRE or IPIP…

  • CVE-2016-1273MedApr 15, 2016
    risk 0.38cvss 5.9epss 0.01

    Juniper Junos OS before 13.2X51-D40, 14.x before 14.1X53-D30, and 15.x before 15.1X53-D20 on QFX5100 and QFX10002 switches do not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic encryption and authentication protection mechanisms via…

  • CVE-2016-1262MedJan 15, 2016
    risk 0.38cvss 5.9epss 0.02

    Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.1X48 before 12.3X48-D20, and 15.1X49 before 15.1X49-D30 on SRX series devices, when the Real Time Streaming Protocol Application Layer Gateway (RTSP ALG) is enabled, allow remote attackers to cause a denial of…

  • CVE-2016-1257MedJan 15, 2016
    risk 0.38cvss 5.9epss 0.02

    The Routing Engine in Juniper Junos OS 13.2R5 through 13.2R8, 13.3R1 before 13.3R8, 13.3R7 before 13.3R7-S3, 14.1R1 before 14.1R6, 14.1R3 before 14.1R3-S9, 14.1R4 before 14.1R4-S7, 14.1X51 before 14.1X51-D65, 14.1X53 before 14.1X53-D12, 14.1X53 before 14.1X53-D28, 14.1X53 before…

  • CVE-2018-0029MedJul 11, 2018
    risk 0.37cvss 5.7epss 0.01

    While experiencing a broadcast storm, placing the fxp0 interface into promiscuous mode via the 'monitor traffic interface fxp0' can cause the system to crash and restart (vmcore). This issue only affects Junos OS 15.1 and later releases, and affects both single core and…

  • CVE-2026-33787MedApr 9, 2026
    risk 0.36cvss 5.5epss 0.00

    An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis control daemon (chassisd) of Juniper Networks Junos OS on SRX1500, SRX4100, SRX4200 and SRX4600 allows a local attacker with low privileges to cause a complete Denial of Service (DoS). When a…

Page 3 of 22