Vulnerabilities > Juniper > High

DATE CVE VULNERABILITY TITLE RISK
2019-10-09 CVE-2019-0068 Improper Check for Unusual or Exceptional Conditions vulnerability in Juniper Junos
The SRX flowd process, responsible for packet forwarding, may crash and restart when processing specific multicast packets.
network
low complexity
juniper CWE-754
7.5
2019-10-09 CVE-2019-0066 Unspecified vulnerability in Juniper Junos
An unexpected status return value weakness in the Next-Generation Multicast VPN (NG-mVPN) service of Juniper Networks Junos OS allows attacker to cause a Denial of Service (DoS) condition and core the routing protocol daemon (rpd) process when a specific malformed IPv4 packet is received by the device running BGP.
network
low complexity
juniper
7.5
2019-10-09 CVE-2019-0065 Unspecified vulnerability in Juniper Junos
On MX Series, when the SIP ALG is enabled, receipt of a certain malformed SIP packet may crash the MS-PIC component on MS-MIC or MS-MPC.
network
low complexity
juniper
7.5
2019-10-09 CVE-2019-0064 Unspecified vulnerability in Juniper Junos 18.2/18.4/19.2
On SRX5000 Series devices, if 'set security zones security-zone <zone> tcp-rst' is configured, the flowd process may crash when a specific TCP packet is received by the device and triggers a new session.
network
low complexity
juniper
7.5
2019-10-09 CVE-2019-0063 Unspecified vulnerability in Juniper Junos
When an MX Series Broadband Remote Access Server (BRAS) is configured as a Broadband Network Gateway (BNG) with DHCPv6 enabled, jdhcpd might crash when receiving a specific crafted DHCP response message on a subscriber interface.
network
low complexity
juniper
7.5
2019-10-09 CVE-2019-0062 Session Fixation vulnerability in Juniper Junos
A session fixation vulnerability in J-Web on Junos OS may allow an attacker to use social engineering techniques to fix and hijack a J-Web administrators web session and potentially gain administrative access to the device.
network
low complexity
juniper CWE-384
8.8
2019-10-09 CVE-2019-0061 Unspecified vulnerability in Juniper Junos
The management daemon (MGD) is responsible for all configuration and management operations in Junos OS.
local
low complexity
juniper
7.8
2019-10-09 CVE-2019-0060 Improper Handling of Exceptional Conditions vulnerability in Juniper Junos 15.1X49/18.2/18.4
The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel.
network
low complexity
juniper CWE-755
7.5
2019-10-09 CVE-2019-0059 Memory Leak vulnerability in Juniper Junos 18.1/18.1X75
A memory leak vulnerability in the of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by sending specific commands from a peered BGP host and having those BGP states delivered to the vulnerable device.
network
low complexity
juniper CWE-401
7.5
2019-10-09 CVE-2019-0058 Unspecified vulnerability in Juniper Junos 12.3X48
A vulnerability in the Veriexec subsystem of Juniper Networks Junos OS allowing an attacker to fully compromise the host system.
local
low complexity
juniper
7.8