Vulnerabilidades em Juniper Networks

893 resultados

Análise Vexday

Com 893 CVEs catalogadas e 7 confirmadas em exploração ativa pelo CISA KEV, a taxa de exploração de dispositivos Juniper Networks está 1,7× acima da média geral do catálogo, o que indica risco operacional elevado para organizações que dependem dessas soluções. A CVE mais crítica em exploração ativa no momento é CVE-2023-36846, com escore EPSS de 0,9421 — valor que sinaliza altíssima probabilidade de exploração em curto prazo e deve concentrar esforços imediatos de remediação. O tipo de falha mais recorrente, CWE-754 (verificação inadequada de condições excepcionais), aponta para uma fragilidade estrutural de tratamento de erros que tende a se manifestar em múltiplos componentes. Com 38 CVEs de severidade crítica, 4 com prova de conceito pública disponível e 27 vulnerabilidades surgidas nos últimos 90 dias, o ritmo de exposição recente exige monitoramento contínuo e priorização ativa de patches.

CVE-2026-21914HIGHJunos OS: SRX Series: A specifically malformed GTP message will cause an FPC crashEPSS 0.3%CVE-2017-2327—A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an auEPSS 0.3%CVE-2018-0023MEDIUMJunos Snapshot Administrator (JSNAPy) world writeable default configuration file permissionEPSS 0.3%CVE-2023-22395MEDIUMJunos OS: In an MPLS scenario the processing of specific packets to the device causes a buffer leak and ultimately a loss of connectivityEPSS 0.3%CVE-2024-39533MEDIUMJunos OS: QFX5000 Series and EX4600 Series: Output firewall filter is not applied if certain match criteria are usedEPSS 0.3%CVE-2022-22250MEDIUMJunos OS and Junos OS Evolved: An FPC crash might be seen due to an EVPN MAC entry moving from local to remoteEPSS 0.3%CVE-2024-21618HIGHJunos OS and Junos OS Evolved: When LLDP is enabled and a malformed LLDP packet is received, l2cpd crashesEPSS 0.3%CVE-2022-22224MEDIUMJunos OS and Junos OS Evolved: PPMD goes into infinite loop upon receipt of malformed OSPF TLVEPSS 0.3%CVE-2024-21593HIGHJunos OS: MX Series with MPC10, MPC11, LC9600, and MX304: A specific MPLS packet will cause a PFE crashEPSS 0.3%CVE-2024-21609HIGHJunos OS: MX Series with SPC3, and SRX Series: If specific IPsec parameters are negotiated iked will crash due to a memory leakEPSS 0.3%CVE-2024-21605HIGHJunos OS: SRX 300 Series: Specific link local traffic causes a control plane overloadEPSS 0.3%CVE-2017-2322—A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1, may allow an aEPSS 0.3%CVE-2026-21908HIGHJunos OS and Junos OS Evolved: Use after free vulnerability In 802.1X authentication daemon can cause crash of the dot1xd processEPSS 0.3%CVE-2023-36842MEDIUMJunos OS: jdhcpd will hang on receiving a specific DHCP packetEPSS 0.3%CVE-2024-21599MEDIUMJunos OS: MX Series: MPC3E memory leak with PTP configurationEPSS 0.3%CVE-2022-22216MEDIUMJunos OS: PTX Series and QFX10000 Series: 'Etherleak' memory disclosure in Ethernet padding dataEPSS 0.3%CVE-2019-0042MEDIUMIncorrect messages from Juniper Identity Management Service (JIMS) can trigger Denial of Service or firewall bypass conditions for SRX series devicesEPSS 0.3%CVE-2024-30388HIGHJunos OS: QFX5000 Series and EX Series: Specific malformed LACP packets will cause flapsEPSS 0.3%CVE-2026-33782HIGHJunos OS: MX Series: In specific DHCPv6 scenarios jdhcpd memory increases continuously with subscriber logoutsEPSS 0.3%CVE-2023-28975MEDIUMJunos OS: The kernel will crash when certain USB devices are insertedEPSS 0.3%

← anteriorpágina 35 / 45próxima →