Juniper Vulnerabilities

JSA10732 – 2016-04 Security Bulletin: ScreenOS: Malformed SSL/TLS packet causes Denial...

2016-04 Security Bulletin: ScreenOS: Malformed SSL/TLS packet causes Denial of Service (CVE-2016-1268)Product Affected:This issue affects any products and platforms running ScreenOS versions 6.3.0r19b and...

JSA10683 – 2015-07 Security Bulletin: Junos: SRX ‘set system ports console...

2015-07 Security Bulletin: Junos: SRX 'set system ports console insecure' not functioning as expected (CVE-2015-3007) Product Affected:This issue affects the...

JSA10766 – 2016-10 Security Bulletin: vMX: Information leak vulnerability (CVE-2016-4924)

Product Affected:vMX (Virtual MX Series router)Problem: An incorrect permissions vulnerability in vMX may allow local unprivileged users on a host system read access to vMX...

JSA10700 – 2015-10 Security Bulletin: Junos: J-Web in vSRX-Series: A remote...

2015-10 Security Bulletin: Junos: J-Web in vSRX-Series: A remote attacker can cause a denial of service to vSRX when J-Web is enabled causing the...

JSA10712 – 2015-12 Out of Cycle Security Bulletin: ScreenOS: Crafted SSH...

2015-12 Out of Cycle Security Bulletin: ScreenOS: Crafted SSH negotiation may trigger system crash (​CVE-2015-7754) Product Affected:This issue can affect...

JSA10748 – Protect-RE(loopback) Firewall Filter does not discard OSPF packets from...

Protect-RE(loopback) Firewall Filter does not discard OSPF packets from non-permitted prefixes Product Affected:This issue affects the EX4300, EX4600, QFX3500,...

JSA10685 – 2015-07 Security Bulletin: NSM Appliance: Apache HTTP server affected...

2015-07 Security Bulletin: NSM Appliance: Apache HTTP server affected by multiple vulnerabilities Product Affected:These issues can affect any NSM Appliance...

JSA10605 – Juniper response to reports of NSA attacks and monitoring...

 Juniper response to Der Spiegel reports of NSA attacks and monitoring of Juniper products.  Juniper Networks is currently investigating, alleged security compromises of technology products...

JSA10692 – 2015-07 Security Bulletin: Junos: SRX Network Security Daemon denial...

2015-07 Security Bulletin: Junos: SRX Network Security Daemon denial of service vulnerability (CVE-2015-5363) Product Affected:This issue can affect all SRX...

JSA10774 – 2017-01 Security Bulletin: Network and Security Manager (NSM): Multiple...

CVE CVSS base score Summary CVE-2015-5600 6.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L) The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within...

JSA10694 – 2015-10 Security Bulletin: Junos: OpenSSL June-July 2015 advisories

The ​OpenSSL project has published a set of security advisories for vulnerabilities resolved in the OpenSSL library in June and July 2015: CVE CVSS v2* base score Summary CVE-2015-1791 6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P) Race condition in...