CVSS: 7.8EPSS: 0%CPEs: 45EXPL: 0CVE-2016-1271
https://notcve.org/view.php?id=CVE-2016-1271
15 Apr 2016 — Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D25, 13.2 before 13.2R8, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.2 before 14.2R4, 15.1 before 15.1R1 or 15.1F2, and 15.1X49 before 15.1X49-D15 allow local users to gain privileges via crafted combinations of CLI commands and arguments, a different vulnerability than CVE-2015-3003, CVE-2014-3816, and CVE-2014-0615. Juniper Junos OS en versiones anteriores a 12.1X46-D45, 12.1X47 en versiones anterio... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10739 • CWE-20: Improper Input Validation •
CVSS: 5.9EPSS: 0%CPEs: 16EXPL: 0CVE-2016-1273
https://notcve.org/view.php?id=CVE-2016-1273
15 Apr 2016 — Juniper Junos OS before 13.2X51-D40, 14.x before 14.1X53-D30, and 15.x before 15.1X53-D20 on QFX5100 and QFX10002 switches do not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic encryption and authentication protection mechanisms via unspecified vectors. Juniper Junos OS en versiones anteriores a 13.2X51-D40, 14.x en versiones anteriores a 14.1X53-D30 y 15.x en versiones anteriores a 15.1X53-D20 en switches QFX5100 y QFX10002 no tienen suficiente entropía, lo que ... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10746 • CWE-310: Cryptographic Issues •
CVSS: 5.9EPSS: 0%CPEs: 9EXPL: 0CVE-2016-1262
https://notcve.org/view.php?id=CVE-2016-1262
15 Jan 2016 — Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.1X48 before 12.3X48-D20, and 15.1X49 before 15.1X49-D30 on SRX series devices, when the Real Time Streaming Protocol Application Layer Gateway (RTSP ALG) is enabled, allow remote attackers to cause a denial of service (flowd crash) via a crafted RTSP packet. Juniper Junos OS en versiones anteriores a 12.1X46-D45, 12.1X47 en versiones anteriores a 12.1X47-D30, 12.1X48 en versiones anteriores a 12.3X48-D20 y 15.1X49 en versiones anteriores a ... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10721 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2015-7749
https://notcve.org/view.php?id=CVE-2015-7749
19 Oct 2015 — The PFE daemon in Juniper vSRX virtual firewalls with Junos OS before 15.1X49-D20 allows remote attackers to cause a denial of service via an unspecified connection request to the "host-OS." El demonio PFE en firewalls virtuales de Juniper vSRX con Junos OS en versiones anteriores a 15.1X49-D20 permite a atacantes remotos provocar una denegación de servicio a través de una petición de conexión no especificada en el 'host-OS'. • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10703 • CWE-20: Improper Input Validation •
CVSS: 6.9EPSS: 0%CPEs: 54EXPL: 0CVE-2015-7751
https://notcve.org/view.php?id=CVE-2015-7751
19 Oct 2015 — Juniper Junos OS before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R9, 12.3X48 before 12.3X48-D15, 13.2 before 13.2R7, 13.2X51 before 13.2X51-D35, 13.3 before 13.3R6, 14.1 before 14.1R5, 14.1X50 before 14.1X50-D105, 14.1X51 before 14.1X51-D70, 14.1X53 before 14.1X53-D25, 14.1X55 before 14.1X55-D20, 14.2 before 14.2R1, 15.1 before 15.1F2 or 15.1R1, and 15.1X49 before 15.1X49-D10 does not require a password for the root user when pam.conf is "corrupted," which allows ... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10707 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2014-6451
https://notcve.org/view.php?id=CVE-2014-6451
16 Oct 2015 — J-Web in Juniper vSRX virtual firewalls with Junos OS before 15.1X49-D20 allows remote attackers to cause a denial of service (system reboot) via unspecified vectors. J-Web en Juniper vSRX virtual firewalls con Junos SO en versiones anteriores a 15.1X49-D20 permite a atacantes remotos provocar una denegación de servicio (reinicio del sistema) a través de vectores no especificados. • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10700 •
CVSS: 8.8EPSS: 1%CPEs: 34EXPL: 0CVE-2015-0501 – mysql: unspecified vulnerability related to Server:Compiling (CPU April 2015)
https://notcve.org/view.php?id=CVE-2015-0501
16 Apr 2015 — Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Compiling. Vulnerabilidad no especificada en Oracle MySQL Server 5.5.42 y anterioresw y 5.6.23 y anteriores, permite a usuarios remotos autenticados afectar la disponibilidad a través de vectores desconocidos relacionados con Server : Compiling. MariaDB is a multi-user, multi-threaded SQL database server that is binary c... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10698 •
CVSS: 7.8EPSS: 0%CPEs: 53EXPL: 0CVE-2014-3811
https://notcve.org/view.php?id=CVE-2014-3811
29 Sep 2014 — Juniper Installer Service (JIS) Client 7.x before 7.4R6 for Windows and Junos Pulse Client before 4.0R6 allows local users to gain privileges via unspecified vectors. Juniper Installer Service (JIS) Client 7.x anterior a 7.4R6 para Windows y Junos Pulse Client anterior a 4.0R6 permiten a usuarios locales ganar privilegios a través de vectores no especificados. • https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10644 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 67EXPL: 0CVE-2013-7313
https://notcve.org/view.php?id=CVE-2013-7313
23 Jan 2014 — The OSPF implementation in Juniper Junos through 13.x, JunosE, and ScreenOS through 6.3.x does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149. La implementación de OSPF en Juniper Junos hasta la versión 13.x, JunosE, y ScreenO... • http://www.kb.cert.org/vuls/id/229804 •
CVSS: 9.0EPSS: 9%CPEs: 9EXPL: 4CVE-2013-6618 – Juniper Junos J-Web - Privilege Escalation
https://notcve.org/view.php?id=CVE-2013-6618
05 Nov 2013 — jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary commands via the rsargs parameter in an exec action. jsdm / ajax / port.php de J-Web en Juniper Junos anterior 10.4R13, 11.4 anterior a 11.4R, 12,.1 anterior a 12.1R5 anterior a 12.2R3 y 12.3 antes 12.3R1 permite a usuarios remotos autenticados ejecutar comandos arbitrarios a través del parámetro rsargs en una a... • https://www.exploit-db.com/exploits/29544 • CWE-20: Improper Input Validation •