|
252561
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
Receipt of a specially crafted IPv6 exception packet may be able to trigger a kernel crash (vmcore), causing the device to reboot. The issue is specific to the processing of Broadband Edge (BBE) clie…
|
CWE-20
Improper Input Validation
|
CVE-2018-0058
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252562
|
6.1 |
MEDIUM
Network
|
juniper
|
junos_space
|
A reflected cross-site scripting vulnerability in OpenNMS included with Juniper Networks Junos Space may allow the stealing of sensitive information or session credentials from Junos Space administra…
|
CWE-79
Cross-site Scripting
|
CVE-2018-0046
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252563
|
8.1 |
HIGH
Network
|
juniper
|
junos
|
An insecure SSHD configuration in Juniper Device Manager (JDM) and host OS on Juniper NFX Series devices may allow remote unauthenticated access if any of the passwords on the system are empty. The a…
|
CWE-287
Improper Authentication
|
CVE-2018-0044
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252564
|
9.6 |
CRITICAL
Network
|
juniper
|
junos
|
On MX Series and M120/M320 platforms configured in a Broadband Edge (BBE) environment, subscribers logging in with DHCP Option 50 to request a specific IP address will be assigned the requested IP ad…
|
NVD-CWE-noinfo
|
CVE-2018-0057
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252565
|
5.3 |
MEDIUM
Adjacent
|
juniper
|
junos
|
If a duplicate MAC address is learned by two different interfaces on an MX Series device, the MAC address learning function correctly flaps between the interfaces. However, the Layer 2 Address Learni…
|
CWE-20
Improper Input Validation
|
CVE-2018-0056
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252566
|
5.3 |
MEDIUM
Adjacent
|
juniper
|
junos
|
Receipt of a specially crafted DHCPv6 message destined to a Junos OS device configured as a DHCP server in a Broadband Edge (BBE) environment may result in a jdhcpd daemon crash. The daemon automatic…
|
CWE-20
Improper Input Validation
|
CVE-2018-0055
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252567
|
6.5 |
MEDIUM
Adjacent
|
juniper
|
junos
|
On QFX5000 Series and EX4600 switches, a high rate of Ethernet pause frames or an ARP packet storm received on the management interface (fxp0) can cause egress interface congestion, resulting in rout…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2018-0054
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252568
|
8.1 |
HIGH
Network
|
juniper
|
junos
|
If RSH service is enabled on Junos OS and if the PAM authentication is disabled, a remote unauthenticated attacker can obtain root access to the device. RSH service is disabled by default on Junos. T…
|
CWE-287
Improper Authentication
|
CVE-2018-0052
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252569
|
5.9 |
MEDIUM
Network
|
juniper
|
junos
|
A Denial of Service vulnerability in the SIP application layer gateway (ALG) component of Junos OS based platforms allows an attacker to crash MS-PIC, MS-MIC, MS-MPC, MS-DPC or SRX flow daemon (flowd…
|
CWE-20
Improper Input Validation
|
CVE-2018-0051
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252570
|
5.9 |
MEDIUM
Network
|
juniper
|
junos
|
An error handling vulnerability in Routing Protocols Daemon (RPD) of Juniper Networks Junos OS allows an attacker to cause RPD to crash. Continued receipt of this malformed MPLS RSVP packet will caus…
|
CWE-20
Improper Input Validation
|
CVE-2018-0050
|
2024-11-21 12:37 |
2018-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
