Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

juniper junos 15.1x49 vulnerabilities and exploits

(subscribe to this query)
641
VMScore
CVE-2017-10602
A buffer overflow vulnerability in Junos OS CLI may allow a local authenticated user with read only privileges and access to Junos CLI, to execute code with root privileges. Affected releases are Juniper Networks Junos OS: 14.1X53 versions before 14.1X53-D46 on EX2200/VC, EX3200,...
Juniper Junos 14.1x53Juniper Junos 14.2Juniper Junos 15.1Juniper Junos 15.1x49-d10Juniper Junos 15.1x49Juniper Junos 15.1x49-d35Juniper Junos 15.1x49-d30Juniper Junos 15.1x49-d20Juniper Junos 15.1x53
570
VMScore
CVE-2021-0211
An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon (RPD) service allows an malicious user to send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within th...
Juniper Junos 17.3Juniper Junos 17.4Juniper Junos 18.1Juniper Junos 18.2Juniper Junos 18.3Juniper Junos 18.4Juniper Junos 19.1Juniper Junos 19.2Juniper Junos 19.3Juniper Junos 19.4Juniper Junos 20.1Juniper Junos 20.2Juniper Junos 20.3Juniper Junos Os Evolved 19.2Juniper Junos Os Evolved 19.3Juniper Junos Os Evolved 19.4Juniper Junos Os Evolved 20.1Juniper Junos Os Evolved 20.2Juniper Junos Os Evolved 20.3Juniper Junos 15.1x49Juniper Junos 15.1x49-d30Juniper Junos 15.1x49-d60
445
VMScore
CVE-2019-0037
In a Dynamic Host Configuration Protocol version 6 (DHCPv6) environment, the jdhcpd daemon may crash and restart upon receipt of certain DHCPv6 solicit messages received from a DHCPv6 client. By continuously sending the same crafted packet, an attacker can repeatedly crash the jd...
Juniper Junos 15.1Juniper Junos 15.1x49-d30Juniper Junos 15.1x49-d140Juniper Junos 15.1x49-d150Juniper Junos 15.1x49-d160Juniper Junos 15.1x49-d60Juniper Junos 15.1x53-d51Juniper Junos 15.1x53-d55Juniper Junos 15.1x53-d57Juniper Junos 15.1x53-d58Juniper Junos 15.1x53-d59Juniper Junos 15.1x53-d50Juniper Junos 15.1x53-d52Juniper Junos 16Juniper Junos 16.2Juniper Junos 17.1Juniper Junos 17.2Juniper Junos 17.3Juniper Junos 17.4Juniper Junos 18.1Juniper Junos 18.2Juniper Junos 18.2x75-d10
383
VMScore
CVE-2016-1262
Juniper Junos OS prior to 12.1X46-D45, 12.1X47 prior to 12.1X47-D30, 12.1X48 prior to 12.3X48-D20, and 15.1X49 prior to 15.1X49-D30 on SRX series devices, when the Real Time Streaming Protocol Application Layer Gateway (RTSP ALG) is enabled, allow remote malicious users to cause ...
Juniper Junos 12.3x48Juniper Junos 12.1x47Juniper Junos 15.1x49Juniper Junos
445
VMScore
CVE-2019-0010
An SRX Series Service Gateway configured for Unified Threat Management (UTM) may experience a system crash with the error message "mbuf exceed" -- an indication of memory buffer exhaustion -- due to the receipt of crafted HTTP traffic. Each crafted HTTP packet inspected...
Juniper Junos 12.1x46Juniper Junos 12.3x48Juniper Junos 15.1x49
445
VMScore
CVE-2019-0060
The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel. Continued processing of these packets may result in an extended Denial of Service (DoS) condition. Thi...
Juniper Junos 15.1x49Juniper Junos 18.2Juniper Junos 18.4
445
VMScore
CVE-2017-10604
When the device is configured to perform account lockout with a defined period of time, any unauthenticated user attempting to log in as root with an incorrect password can trigger a lockout of the root account. When an SRX Series device is in cluster mode, and a cluster sync or ...
Juniper Junos 12.1x46Juniper Junos 12.3x48Juniper Junos 15.1x49
445
VMScore
CVE-2017-10605
On all vSRX and SRX Series devices, when the DHCP or DHCP relay is configured, specially crafted packet might cause the flowd process to crash, halting or interrupting traffic from flowing through the device(s). Repeated crashes of the flowd process may constitute an extended den...
Juniper Junos 15.1x49Juniper Junos 12.1x46Juniper Junos 12.3x48
516
VMScore
CVE-2017-10620
Juniper Networks Junos OS on SRX series devices do not verify the HTTPS server certificate before downloading anti-virus updates. This may allow a man-in-the-middle malicious user to inject bogus signatures to cause service disruptions or make the device not detect certain types ...
Juniper Junos 12.1x46Juniper Junos 12.3x48Juniper Junos 15.1x49
383
VMScore
CVE-2018-0009
On Juniper Networks SRX series devices, firewall rules configured to match custom application UUIDs starting with zeros can match all TCP traffic. Due to this issue, traffic that should have been blocked by other rules is permitted to flow through the device resulting in a firewa...
Juniper Junos 12.1x46Juniper Junos 12.3x48Juniper Junos 15.1x49
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook