Vulnerabilities > Juniper

DATE CVE VULNERABILITY TITLE RISK
2022-04-14 CVE-2022-22196 Unspecified vulnerability in Juniper Junos and Junos OS Evolved
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker with an established ISIS adjacency to cause a Denial of Service (DoS).
low complexity
juniper
6.5
2022-04-14 CVE-2022-22197 Unspecified vulnerability in Juniper Junos and Junos OS Evolved
An Operation on a Resource after Expiration or Release vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker with an established BGP session to cause a Denial of Service (DoS).
network
low complexity
juniper
7.5
2022-04-14 CVE-2022-22198 Access of Uninitialized Pointer vulnerability in Juniper Junos 20.4/21.1/21.2
An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service (DoS).
network
low complexity
juniper CWE-824
7.5
2022-01-19 CVE-2022-22152 Unspecified vulnerability in Juniper Contrail Service Orchestration
A Protection Mechanism Failure vulnerability in the REST API of Juniper Networks Contrail Service Orchestration allows one tenant on the system to view confidential configuration details of another tenant on the same system.
network
low complexity
juniper
6.5
2022-01-19 CVE-2022-22153 Unspecified vulnerability in Juniper Junos
An Insufficient Algorithmic Complexity combined with an Allocation of Resources Without Limits or Throttling vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series and MX Series with SPC3 allows an unauthenticated network attacker to cause latency in transit packet processing and even packet loss.
network
low complexity
juniper
7.5
2022-01-19 CVE-2022-22154 Exposure of Resource to Wrong Sphere vulnerability in Juniper Junos
In a Junos Fusion scenario an External Control of Critical State Data vulnerability in the Satellite Device (SD) control state machine of Juniper Networks Junos OS allows an attacker who is able to make physical changes to the cabling of the device to cause a denial of service (DoS).
low complexity
juniper CWE-668
6.8
2022-01-19 CVE-2022-22155 Memory Leak vulnerability in Juniper Junos
An Uncontrolled Resource Consumption vulnerability in the handling of IPv6 neighbor state change events in Juniper Networks Junos OS allows an adjacent attacker to cause a memory leak in the Flexible PIC Concentrator (FPC) of an ACX5448 router.
low complexity
juniper CWE-401
6.5
2022-01-19 CVE-2022-22156 Unspecified vulnerability in Juniper Junos
An Improper Certificate Validation weakness in the Juniper Networks Junos OS allows an attacker to perform Person-in-the-Middle (PitM) attacks when a system script is fetched from a remote source at a specified HTTPS URL, which may compromise the integrity and confidentiality of the device.
network
high complexity
juniper
7.4
2022-01-19 CVE-2022-22157 Incorrect Authorization vulnerability in Juniper Junos
A traffic classification vulnerability in Juniper Networks Junos OS on the SRX Series Services Gateways may allow an attacker to bypass Juniper Deep Packet Inspection (JDPI) rules and access unauthorized networks or resources, when 'no-syn-check' is enabled on the device.
network
low complexity
juniper CWE-863
critical
9.3
2022-01-19 CVE-2022-22159 Unspecified vulnerability in Juniper Junos
A vulnerability in the NETISR network queue functionality of Juniper Networks Junos OS kernel allows an attacker to cause a Denial of Service (DoS) by sending crafted genuine packets to a device.
network
low complexity
juniper
7.5