Security News > 2020 > July > Juniper Networks Patches Critical Vulnerabilities in Firewalls

Juniper Networks Patches Critical Vulnerabilities in Firewalls
2020-07-10 14:26

Juniper Networks this week informed customers that it has patched many vulnerabilities in its products, mostly ones that can be exploited for denial-of-service attacks.

Over a dozen advisories have been published by the company to describe several vulnerabilities that are specific to Juniper products, as well as tens of flaws impacting third-party components.

One of the most serious vulnerabilities in software made by Juniper is CVE-2020-1647, a critical double free issue that affects SRX series firewalls with the ICAP redirect service enabled.

Half a dozen of the vulnerabilities have been rated high severity and all of them can be exploited for DoS attacks, including sustained attacks.

Juniper Networks says it's not aware of any attacks exploiting the vulnerabilities patched this week.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/Gs2qrc4Blkc/juniper-networks-patches-critical-vulnerabilities-firewalls

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2020-07-17 CVE-2020-1647 Double Free vulnerability in Juniper Junos
On Juniper Networks SRX Series with ICAP (Internet Content Adaptation Protocol) redirect service enabled, a double free vulnerability can lead to a Denial of Service (DoS) or Remote Code Execution (RCE) due to processing of a specific HTTP message.
network
low complexity
juniper CWE-415
critical
9.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Juniper 33 0 325 328 54 707