Vulnerabilidades en Juniper Networks

893 resultados

Análisis Vexday

Com 893 CVEs catalogadas e 7 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração de dispositivos Juniper Networks está 1,7× acima da média geral do catálogo, o que indica risco operacional elevado para organizações que dependem dessas soluções. A CVE mais crítica em exploração ativa no momento é CVE-2023-36846, com escore EPSS de 0,9421 — valor que sinaliza altíssima probabilidade de exploração em curto prazo e deve concentrar esforços imediatos de remediação. O tipo de falha mais recorrente, CWE-754 (verificação inadequada de condições excepcionais), aponta para uma fragilidade estrutural de tratamento de erros que tende a se manifestar em múltiplos componentes. Com 38 CVEs de severidade crítica, 4 com prova de conceito pública disponível e 27 vulnerabilidades surgidas nos últimos 90 dias, o ritmo de exposição recente exige monitoramento contínuo e priorização ativa de patches.

CVE-2023-44185HIGHJunos OS and Junos OS Evolved: In an BGP scenario RPD crashes upon receiving and processing a specific malformed ISO VPN BGP UPDATE packetEPSS 0.5%CVE-2023-44197HIGHJunos OS and Junos OS Evolved: An rpd crash may occur when BGP is processing newly learned routesEPSS 0.5%CVE-2023-44192HIGHJunos OS: QFX5000 Series: DMA memory leak is observed when specific DHCP packets are transmitted over pseudo-VTEPEPSS 0.5%CVE-2023-44191HIGHJunos OS: QFX5000 Series and EX4000 Series: Denial of Service (DoS) on a large scale VLAN due to PFE hoggingEPSS 0.5%CVE-2023-44175MEDIUMJunos OS and Junos OS Evolved: Receipt of a specific genuine PIM packet causes RPD crashEPSS 0.5%CVE-2024-30390MEDIUMJunos OS Evolved: Connection limits is not being enforced while the resp. rate limit is being enforcedEPSS 0.5%CVE-2020-1633HIGHJunos OS: MX Series: Crafted packets traversing a Broadband Network Gateway (BNG) configured with IPv6 NDP proxy could lead to Denial of ServiceEPSS 0.5%CVE-2021-0221MEDIUMJunos OS: QFX Series: Traffic loop Denial of Service (DoS) upon receipt of specific IP multicast trafficEPSS 0.5%CVE-2024-21603MEDIUMJunos OS: MX Series: Gathering statistics in a scaled SCU/DCU configuration will lead to a device crashEPSS 0.5%CVE-2024-39555HIGHJunos OS and Junos OS Evolved: Receipt of a specific malformed BGP update causes the session to resetEPSS 0.5%CVE-2023-44184MEDIUMJunos OS and Junos OS Evolved: High CPU load due to specific NETCONF commandEPSS 0.5%CVE-2020-1681MEDIUMJunos OS Evolved: Receipt of a specifically malformed NDP packet could lead to Denial of ServiceEPSS 0.5%CVE-2020-1668MEDIUMJunos OS: EX2300 Series: High CPU load due to receipt of specific multicast packets on layer 2 interfaceEPSS 0.5%CVE-2020-1689MEDIUMJunos OS: EX4300-MP/EX4600/QFX5K Series: High CPU load due to receipt of specific layer 2 frames when deployed in a Virtual Chassis configurationEPSS 0.5%CVE-2026-21906HIGHJunos OS: SRX Series: With GRE performance acceleration enabled, receipt of a specific ICMP packet causes the PFE to crashEPSS 0.5%CVE-2024-21586HIGHJunos OS: SRX Series and NFX Series: Specific valid traffic leads to a PFE crashEPSS 0.5%CVE-2024-39540HIGHJunos OS: SRX Series, and MX Series with SPC3: Specific valid TCP traffic can cause a pfe crashEPSS 0.5%CVE-2024-39548HIGHJunos OS Evolved: Receipt of specific packets in the aftmand process will lead to a memory leakEPSS 0.5%CVE-2024-39545HIGHJunos OS: SRX Series, MX Series with SPC3 and NFX350: When VPN tunnels parameters are not configured in specific way the iked process will crashEPSS 0.5%CVE-2020-1687MEDIUMJunos OS: EX4300-MP/EX4600/QFX5K Series: High CPU load due to receipt of specific layer 2 frames in EVPN-VXLAN deployment.EPSS 0.5%

← anteriorpágina 24 / 45siguiente →