CVSS: 6.5EPSS: 0%CPEs: 359EXPL: 0CVE-2021-0289 – Junos OS: User-defined ARP Policer isn't applied on Aggregated Ethernet (AE) interface until firewall process is restarted
https://notcve.org/view.php?id=CVE-2021-0289
15 Jul 2021 — When user-defined ARP Policer is configured and applied on one or more Aggregated Ethernet (AE) interface units, a Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability between the Device Control Daemon (DCD) and firewall process (dfwd) daemons of Juniper Networks Junos OS allows an attacker to bypass the user-defined ARP Policer. In this particular case the User ARP policer is replaced with default ARP policer. To review the desired ARP Policers and actual state one can run the command "show inte... • https://kb.juniper.net/JSA11191 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2014-3814
https://notcve.org/view.php?id=CVE-2014-3814
13 Jun 2014 — The Juniper Networks NetScreen Firewall devices with ScreenOS before 6.3r17, when configured to use the internal DNS lookup client, allows remote attackers to cause a denial of service (crash and reboot) via a sequence of malformed packets to the device IP. Los dispositivos Juniper Networks NetScreen Firewall con ScreenOS anterior a 6.3r17, cuando configurados para utilizar el cliente de búsqueda DNS interno, permite a atacantes remotos causar una denegación de servicio (caída y reinicio) a través de una se... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10632 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2014-3813
https://notcve.org/view.php?id=CVE-2014-3813
13 Jun 2014 — Unspecified vulnerability in the Juniper Networks NetScreen Firewall products with ScreenOS before 6.3r17, when configured to use the internal DNS lookup client, allows remote attackers to cause a denial of service (crash and reboot) via vectors related to a DNS lookup. Vulnerabilidad no especificada en los productos de Juniper Networks NetScreen Firewall con ScreenOS anterior a 6.3r17, cuando está configurado para utilizar el cliente de búsqueda DNS interno, permite a atacantes remotos causar una denegació... • http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10631 •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2013-6958 – Juniper SSG20 Denial of Service
https://notcve.org/view.php?id=CVE-2013-6958
13 Dec 2013 — Juniper NetScreen Firewall running ScreenOS 5.4, 6.2, or 6.3, when the Ping of Death screen is disabled, allows remote attackers to cause a denial of service via a crafted packet. Juniper NetScreen Firewall corriendo ScreenOS 5.4, 6.2 o 6.3, cuando la pantalla Ping of Dead está deshabilitada, permite a atacantes remotos causar una denegación de servico a través de un paquete manipulado. A special crafted ICMP ECHO REQUEST can cause a denial of service condition on the Juniper SSG20. • http://jvn.jp/en/jp/JVN28436508/index.html •