Juniper Security Vulnerabilities (CVEs)

A vulnerability in Juniper Networks Junos OS on QFX10000 Series allows a network-based attacker to cause a persistent Denial of Service (DoS) by sendi...

An unauthenticated network attacker can send specific packets to Aggregated Multiservices (AMS) interfaces on vulnerable Juniper MX Series devices, ca...

A memory leak vulnerability in Juniper SRX Series firewalls with SSL Proxy and UTM Web-Filtering enabled causes gradual memory exhaustion when accessi...

An improper input validation vulnerability in Juniper's Routing Protocol Daemon (rpd) allows unauthenticated attackers to cause BGP session flaps and ...

This vulnerability allows attackers to bypass firewall rules that restrict communication between Test Agents and the Control Center in Juniper Paragon...

This CVE allows local authenticated attackers on Juniper Junos OS Evolved systems to execute administrative commands through the 'sysmanctl' shell com...

An unauthenticated network attacker can cause denial of service on Juniper MX Series routers by sending specific traffic that exceeds DDoS protection ...

This vulnerability allows an unauthenticated network attacker to cause a memory leak in Juniper's routing protocol daemon (rpd) during BGP rib shardin...

This CVE allows a local authenticated low-privileged attacker to copy malicious files into existing Docker containers on Juniper Junos OS Evolved syst...

This vulnerability allows an unauthenticated attacker to crash the routing protocol daemon (RPD) on Juniper devices by sending a malformed BGP flowspe...

This vulnerability allows a local attacker with shell access and low privileges to modify system files or execute commands as root due to improper fil...

This CVE describes an improper input validation vulnerability in Juniper Junos OS download manager that allows locally authenticated low-privileged us...

This CVE describes a memory leak vulnerability in Juniper SRX Series firewalls running Junos OS. An unauthenticated attacker can send specific network...

This CVE describes a use-after-free vulnerability in Juniper's AFT manager process that allows unauthenticated attackers to cause a kernel crash and d...

This CVE describes an unauthenticated resource exhaustion vulnerability in Juniper Junos OS Evolved's Packet Forwarding Engine. An attacker can send h...

This CVE describes a memory leak vulnerability in Juniper Junos OS Packet Forwarding Engine (PFE) that allows unauthenticated attackers to cause denia...

This CVE describes a memory leak vulnerability in Juniper Networks Junos OS PKI daemon (pkid) that occurs when Certificate Revocation List (CRL) downl...

An improper locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX and SRX Series devices allows unauthenticated attackers to crash t...

A stack-based buffer overflow in Juniper's flow processing daemon (flowd) allows unauthenticated attackers to cause denial of service by sending speci...

This CVE describes an improper condition check vulnerability in Juniper EX Series devices that allows specially crafted IPv6 packets to exhaust Packet...

This CVE-2022-22152 is a protection mechanism failure in Juniper Contrail Service Orchestration's REST API that allows one tenant to view another tena...

This vulnerability in Juniper SRX Series firewalls allows attackers to bypass Deep Packet Inspection rules when 'no-syn-check' is enabled, potentially...

This vulnerability allows unauthenticated attackers to cause a denial of service by flooding traffic to the out-of-band management ethernet port on Ju...

An improper input validation vulnerability in Juniper's DHCP daemon (jdhcpd) allows adjacent unauthenticated attackers to crash the service by sending...

This vulnerability in Juniper SRX Series firewalls allows attackers to bypass Deep Packet Inspection rules when 'no-syn-check' is enabled, potentially...

This CVE-2021-31379 is an incorrect behavior order vulnerability in Juniper Junos OS MAP-E automatic tunneling mechanism that allows attackers to send...

A stack-based buffer overflow vulnerability in Juniper's routing protocol daemon (RPD) allows remote unauthenticated attackers to crash the RPD servic...

This path traversal vulnerability in Juniper Networks Junos OS J-Web interface allows authenticated low-privileged users to escape directory restricti...

CVE-2021-31372 is an improper input validation vulnerability in Juniper Networks Junos OS J-Web interface that allows locally authenticated attackers ...

This vulnerability allows remote attackers to cause a denial of service on Juniper Networks devices by sending specially crafted BGP UPDATE or KEEPALI...

An improper input validation vulnerability in the Packet Forwarding Engine manager (FXPC) process of Juniper Networks Junos OS allows attackers to cau...

This CVE describes a local privilege escalation vulnerability in Juniper Junos OS and Junos OS Evolved where a low-privileged local user can crash the...

This vulnerability allows unauthenticated attackers to cause a denial of service by flooding traffic to the out-of-band management ethernet port on af...

A vulnerability in Juniper Junos OS allows remote attackers to cause a denial of service by sending specially crafted IPv6 packets. When processed, th...

This vulnerability allows an attacker to cause a denial of service on Juniper MX Series routers by sending specially crafted packets that trigger a re...

This CVE describes an Improper Handling of Exceptional Conditions vulnerability in Juniper Junos OS and Junos OS Evolved. An attacker can send a speci...

This persistent cross-site scripting (XSS) vulnerability in Juniper Junos OS captive portal GUI allows authenticated remote attackers to inject malici...

This CVE describes a command injection vulnerability in tcpdump command processing on Juniper Networks Junos OS Evolved. It allows authenticated users...

CVE-2021-39531 is a stack-based buffer overflow vulnerability in libslax's slaxLexer function that allows attackers to execute arbitrary code or cause...

CVE-2021-39533 is a heap-based buffer overflow vulnerability in libslax's slaxLexer function that allows attackers to execute arbitrary code or cause ...

This vulnerability allows attackers to cause denial of service on Juniper QFX5000 and EX4600 switches by sending large amounts of legitimate traffic t...

CVE-2021-0278 is an improper input validation vulnerability in Juniper Networks Junos OS J-Web interface that allows locally authenticated users to es...

This vulnerability in Juniper Junos OS prevents DDoS protection configuration changes from taking effect on specific PTX and QFX10K platforms with Par...

This vulnerability allows an attacker to cause a denial of service on Juniper Junos OS devices by sending a specially crafted BGP UPDATE message. The ...

This is a cross-site scripting (XSS) vulnerability in Juniper Networks Junos OS J-Web interface that allows an attacker to hijack another user's activ...

A race condition in Juniper Junos OS Layer 2 Address Learning Daemon (L2ALD) allows attackers to bypass storm-control protections during specific admi...

This CVE allows tenant system administrators on affected Juniper SRX devices to inadvertently send their network traffic to other tenants while modify...