|
246751
|
5.4 |
MEDIUM
Network
|
juniper
|
junos_space
|
A persistent cross-site scripting vulnerability in the UI framework used by Junos Space Security Director may allow authenticated users to inject persistent and malicious scripts. This may allow stea…
|
CWE-79
Cross-site Scripting
|
CVE-2018-0047
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246752
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
A Denial of Service vulnerability in J-Web service may allow a remote unauthenticated user to cause Denial of Service which may prevent other users to authenticate or to perform J-Web operations. Aff…
|
CWE-20
Improper Input Validation
|
CVE-2018-0062
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246753
|
5.3 |
MEDIUM
Network
|
juniper
|
junos
|
A denial of service vulnerability in the telnetd service on Junos OS allows remote unauthenticated users to cause high CPU usage which may affect system performance. Affected releases are Juniper Net…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-0061
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246754
|
5.9 |
MEDIUM
Network
|
juniper
|
junos
|
An improper input validation weakness in the device control daemon process (dcd) of Juniper Networks Junos OS allows an attacker to cause a Denial of Service to the dcd process and interfaces and con…
|
CWE-20
Improper Input Validation
|
CVE-2018-0060
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246755
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
Receipt of a specially crafted IPv6 exception packet may be able to trigger a kernel crash (vmcore), causing the device to reboot. The issue is specific to the processing of Broadband Edge (BBE) clie…
|
CWE-20
Improper Input Validation
|
CVE-2018-0058
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246756
|
6.1 |
MEDIUM
Network
|
juniper
|
junos_space
|
A reflected cross-site scripting vulnerability in OpenNMS included with Juniper Networks Junos Space may allow the stealing of sensitive information or session credentials from Junos Space administra…
|
CWE-79
Cross-site Scripting
|
CVE-2018-0046
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246757
|
8.1 |
HIGH
Network
|
juniper
|
junos
|
An insecure SSHD configuration in Juniper Device Manager (JDM) and host OS on Juniper NFX Series devices may allow remote unauthenticated access if any of the passwords on the system are empty. The a…
|
CWE-287
Improper Authentication
|
CVE-2018-0044
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246758
|
9.6 |
CRITICAL
Network
|
juniper
|
junos
|
On MX Series and M120/M320 platforms configured in a Broadband Edge (BBE) environment, subscribers logging in with DHCP Option 50 to request a specific IP address will be assigned the requested IP ad…
|
NVD-CWE-noinfo
|
CVE-2018-0057
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246759
|
5.3 |
MEDIUM
Adjacent
|
juniper
|
junos
|
If a duplicate MAC address is learned by two different interfaces on an MX Series device, the MAC address learning function correctly flaps between the interfaces. However, the Layer 2 Address Learni…
|
CWE-20
Improper Input Validation
|
CVE-2018-0056
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246760
|
5.3 |
MEDIUM
Adjacent
|
juniper
|
junos
|
Receipt of a specially crafted DHCPv6 message destined to a Junos OS device configured as a DHCP server in a Broadband Edge (BBE) environment may result in a jdhcpd daemon crash. The daemon automatic…
|
CWE-20
Improper Input Validation
|
CVE-2018-0055
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
