CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2018-0032 – Junos OS: RPD crash when receiving a crafted BGP UPDATE
https://notcve.org/view.php?id=CVE-2018-0032
11 Jul 2018 — The receipt of a crafted BGP UPDATE can lead to a routing process daemon (RPD) crash and restart. Repeated receipt of the same crafted BGP UPDATE can result in an extended denial of service condition for the device. This issue only affects the specific versions of Junos OS listed within this advisory. Earlier releases are unaffected by this vulnerability. This crafted BGP UPDATE does not propagate to other BGP peers. • http://www.securitytracker.com/id/1041337 • CWE-20: Improper Input Validation •
CVSS: 5.9EPSS: 0%CPEs: 262EXPL: 0CVE-2018-0034 – Junos OS: A malicious crafted IPv6 DHCP packet may cause the JDHCPD daemon to core
https://notcve.org/view.php?id=CVE-2018-0034
11 Jul 2018 — A Denial of Service vulnerability exists in the Juniper Networks Junos OS JDHCPD daemon which allows an attacker to core the JDHCPD daemon by sending a crafted IPv6 packet to the system. This issue is limited to systems which receives IPv6 DHCP packets on a system configured for DHCP processing using the JDHCPD daemon. This issue does not affect IPv4 DHCP packet processing. Affected releases are Juniper Networks Junos OS: 12.3 versions prior to 12.3R12-S10 on EX Series; 12.3X48 versions prior to 12.3X48-D70... • http://www.securitytracker.com/id/1041338 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 0CVE-2018-0035 – Junos OS: QFX5200 and QFX10002: Unintended ONIE partition was shipped with certain Junos OS .bin and .iso images
https://notcve.org/view.php?id=CVE-2018-0035
11 Jul 2018 — QFX5200 and QFX10002 devices that have been shipped with Junos OS 15.1X53-D21, 15.1X53-D30, 15.1X53-D31, 15.1X53-D32, 15.1X53-D33 and 15.1X53-D60 or have been upgraded to these releases using the .bin or .iso images may contain an unintended additional Open Network Install Environment (ONIE) partition. This additional partition allows the superuser to reboot to the ONIE partition which will wipe out the content of the Junos partition and its configuration. Once rebooted, the ONIE partition will not have roo... • http://www.securitytracker.com/id/1041336 •
CVSS: 9.8EPSS: 1%CPEs: 8EXPL: 0CVE-2018-0037 – Junos OS: RPD daemon crashes due to receipt of crafted BGP NOTIFICATION messages
https://notcve.org/view.php?id=CVE-2018-0037
11 Jul 2018 — Junos OS routing protocol daemon (RPD) process may crash and restart or may lead to remote code execution while processing specific BGP NOTIFICATION messages. By continuously sending crafted BGP NOTIFICATION messages, an attacker can repeatedly crash the RPD process causing a sustained Denial of Service. Due to design improvements, this issue does not affect Junos OS 16.1R1, and all subsequent releases. This issue only affects the receiving BGP device and is non-transitive in nature. Affected releases are J... • http://www.securitytracker.com/id/1041339 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 17%CPEs: 43EXPL: 0CVE-2018-0016 – Junos OS: Kernel crash upon receipt of crafted CLNP datagrams
https://notcve.org/view.php?id=CVE-2018-0016
11 Apr 2018 — Receipt of a specially crafted Connectionless Network Protocol (CLNP) datagram destined to an interface of a Junos OS device may result in a kernel crash or lead to remote code execution. Devices are only vulnerable to the specially crafted CLNP datagram if 'clns-routing' or ES-IS is explicitly configured. Devices with without CLNS enabled are not vulnerable to this issue. Devices with IS-IS configured on the interface are not vulnerable to this issue unless CLNS routing is also enabled. This issue only aff... • http://www.securityfocus.com/bid/103747 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2018-0017 – SRX Series: Denial of service vulnerability in flowd daemon on devices configured with NAT-PT
https://notcve.org/view.php?id=CVE-2018-0017
11 Apr 2018 — A vulnerability in the Network Address Translation - Protocol Translation (NAT-PT) feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition for the SRX device. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D72; 12.3X48 versions prior to 12.3X48-D55; 15.1X49 versions prior to 15.1X49-D90. Una vulnerabilidad en la característica Netwo... • http://www.securityfocus.com/bid/103749 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 85EXPL: 0CVE-2018-0018 – SRX Series: A crafted packet may lead to information disclosure and firewall rule bypass during compilation of IDP policies.
https://notcve.org/view.php?id=CVE-2018-0018
11 Apr 2018 — On SRX Series devices during compilation of IDP policies, an attacker sending specially crafted packets may be able to bypass firewall rules, leading to information disclosure which an attacker may use to gain control of the target device or other internal devices, systems or services protected by the SRX Series device. This issue only applies to devices where IDP policies are applied to one or more rules. Customers not using IDP policies are not affected. Depending on if the IDP updates are automatic or no... • http://www.securityfocus.com/bid/103748 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.9EPSS: 0%CPEs: 215EXPL: 0CVE-2018-0019 – Junos: Denial of service vulnerability in SNMP MIB-II subagent daemon (mib2d).
https://notcve.org/view.php?id=CVE-2018-0019
11 Apr 2018 — A vulnerability in Junos OS SNMP MIB-II subagent daemon (mib2d) may allow a remote network based attacker to cause the mib2d process to crash resulting in a denial of service condition (DoS) for the SNMP subsystem. While a mib2d process crash can disrupt the network monitoring via SNMP, it does not impact routing, switching or firewall functionalities. SNMP is disabled by default on devices running Junos OS. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D76; 12.3 version... • http://www.securitytracker.com/id/1040787 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 177EXPL: 0CVE-2018-0020 – Junos OS: rpd daemon cores due to malformed BGP UPDATE packet
https://notcve.org/view.php?id=CVE-2018-0020
11 Apr 2018 — Junos OS may be impacted by the receipt of a malformed BGP UPDATE which can lead to a routing process daemon (rpd) crash and restart. Receipt of a repeated malformed BGP UPDATEs can result in an extended denial of service condition for the device. This malformed BGP UPDATE does not propagate to other BGP peers. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D47; 15.1 versions prior to 15.1F6-S10, 15.1R4-S9, 15.1R6-S6, 15.1R7; 15.1X49 versions prior to 15.1X49-D130 on SRX;... • http://www.securitytracker.com/id/1040788 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 61EXPL: 0CVE-2018-0021 – Junos OS: Short MacSec keys may allow man-in-the-middle attacks.
https://notcve.org/view.php?id=CVE-2018-0021
11 Apr 2018 — If all 64 digits of the connectivity association name (CKN) key or all 32 digits of the connectivity association key (CAK) key are not configured, all remaining digits will be auto-configured to 0. Hence, Juniper devices configured with short MacSec keys are at risk to an increased likelihood that an attacker will discover the secret passphrases configured for these keys through dictionary-based and brute-force-based attacks using spoofed packets. Affected releases are Juniper Networks Junos OS: 14.1 versio... • http://www.securitytracker.com/id/1040789 •