|
249921
|
5.5 |
MEDIUM
Local
|
juniper
|
jsnapy
|
JSNAPy is an open source python version of Junos Snapshot Administrator developed by Juniper available through github. The default configuration and sample files of JSNAPy automation tool versions pr…
|
CWE-276
Incorrect Default Permissions
|
CVE-2018-0023
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249922
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
A Junos device with VPLS routing-instances configured on one or more interfaces may be susceptible to an mbuf leak when processing a specific MPLS packet. Approximately 1 mbuf is leaked per each pack…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-0022
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249923
|
6.5 |
MEDIUM
Network
|
juniper
|
junos
|
A vulnerability in the Network Address Translation - Protocol Translation (NAT-PT) feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated …
|
CWE-20
Improper Input Validation
|
CVE-2018-0017
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249924
|
8.8 |
HIGH
Adjacent
|
juniper
|
junos
|
If all 64 digits of the connectivity association name (CKN) key or all 32 digits of the connectivity association key (CAK) key are not configured, all remaining digits will be auto-configured to 0. H…
|
NVD-CWE-noinfo
|
CVE-2018-0021
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249925
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
Junos OS may be impacted by the receipt of a malformed BGP UPDATE which can lead to a routing process daemon (rpd) crash and restart. Receipt of a repeated malformed BGP UPDATEs can result in an exte…
|
CWE-20
Improper Input Validation
|
CVE-2018-0020
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249926
|
5.9 |
MEDIUM
Network
|
juniper
|
junos
|
A vulnerability in Junos OS SNMP MIB-II subagent daemon (mib2d) may allow a remote network based attacker to cause the mib2d process to crash resulting in a denial of service condition (DoS) for the …
|
CWE-20
Improper Input Validation
|
CVE-2018-0019
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249927
|
5.9 |
MEDIUM
Network
|
juniper
|
junos
|
On SRX Series devices during compilation of IDP policies, an attacker sending specially crafted packets may be able to bypass firewall rules, leading to information disclosure which an attacker may u…
|
CWE-200
Information Exposure
|
CVE-2018-0018
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249928
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
Receipt of a specially crafted Connectionless Network Protocol (CLNP) datagram destined to an interface of a Junos OS device may result in a kernel crash or lead to remote code execution. Devices are…
|
NVD-CWE-noinfo
|
CVE-2018-0016
|
2024-11-21 12:37 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249929
|
7.8 |
HIGH
Local
|
cisco
|
ios_xe
|
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to inject arbitrary commands into the CLI of the affected software, which could allow …
|
CWE-78
OS Command
|
CVE-2018-0194
|
2024-11-21 12:37 |
2018-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249930
|
4.9 |
MEDIUM
Network
|
cisco
|
ios_xe
|
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to write arbitrary files to the operating system of an affected device.…
|
NVD-CWE-Other
|
CVE-2018-0196
|
2024-11-21 12:37 |
2018-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
