18.2

DATE	CVE	VULNERABILITY TITLE	RISK
2018-10-10	CVE-2018-0058	Improper Input Validation vulnerability in Juniper Junos Receipt of a specially crafted IPv6 exception packet may be able to trigger a kernel crash (vmcore), causing the device to reboot. network low complexity juniper CWE-20	7.5
2018-10-10	CVE-2018-0055	Improper Input Validation vulnerability in Juniper Junos Receipt of a specially crafted DHCPv6 message destined to a Junos OS device configured as a DHCP server in a Broadband Edge (BBE) environment may result in a jdhcpd daemon crash. high complexity juniper CWE-20	5.3
2018-10-10	CVE-2018-0049	NULL Pointer Dereference vulnerability in Juniper Junos A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS allows an attacker to cause the Junos OS kernel to crash. network low complexity juniper CWE-476	7.5
2018-08-18	CVE-2018-15504	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. network low complexity embedthis juniper CWE-476	7.5
2016-03-09	CVE-2016-1286	named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted signature record for a DNAME record, related to db.c and resolver.c. network low complexity isc suse opensuse fedoraproject canonical debian juniper	8.6
2016-03-09	CVE-2016-1285	named in ISC BIND 9.x before 9.9.8-P4 and 9.10.x before 9.10.3-P4 does not properly handle DNAME records when parsing fetch reply messages, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed packet to the rndc (aka control channel) interface, related to alist.c and sexpr.c. network high complexity isc suse opensuse fedoraproject canonical debian juniper	6.8