|
208751
|
6.1 |
MEDIUM
Network
|
juniper
|
junos
|
Insufficient Cross-Site Scripting (XSS) protection in J-Web may potentially allow a remote attacker to inject web script or HTML, hijack the target user's J-Web session and perform administrative act…
|
CWE-79
Cross-site Scripting
|
CVE-2020-1607
|
2024-11-21 14:10 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208752
|
8.1 |
HIGH
Network
|
juniper
|
junos
|
A path traversal vulnerability in the Juniper Networks Junos OS device may allow an authenticated J-web user to read files with 'world' readable permission and delete files with 'world' writeable per…
|
CWE-22
Path Traversal
|
CVE-2020-1606
|
2024-11-21 14:10 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208753
|
8.8 |
HIGH
Adjacent
|
juniper
|
junos
|
When a device using Juniper Network's Dynamic Host Configuration Protocol Daemon (JDHCPD) process on Junos OS or Junos OS Evolved which is configured in relay mode it vulnerable to an attacker sendin…
|
CWE-78
OS Command
|
CVE-2020-1605
|
2024-11-21 14:10 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208754
|
5.3 |
MEDIUM
Network
|
juniper
|
junos
|
On EX4300, EX4600, QFX3500, and QFX5100 Series, a vulnerability in the IP firewall filter component may cause the firewall filter evaluation of certain packets to fail. This issue only affects firewa…
|
NVD-CWE-noinfo
|
CVE-2020-1604
|
2024-11-21 14:10 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208755
|
8.6 |
HIGH
Network
|
juniper
|
junos
|
Specific IPv6 packets sent by clients processed by the Routing Engine (RE) are improperly handled. These IPv6 packets are designed to be blocked by the RE from egressing the RE. Instead, the RE allow…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2020-1603
|
2024-11-21 14:10 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208756
|
8.8 |
HIGH
Adjacent
|
juniper
|
junos
|
When a device using Juniper Network's Dynamic Host Configuration Protocol Daemon (JDHCPD) process on Junos OS or Junos OS Evolved which is configured in relay mode it vulnerable to an attacker sendin…
|
CWE-78
OS Command
|
CVE-2020-1602
|
2024-11-21 14:10 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208757
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
Certain types of malformed Path Computation Element Protocol (PCEP) packets when received and processed by a Juniper Networks Junos OS device serving as a Path Computation Client (PCC) in a PCEP envi…
|
NVD-CWE-noinfo
|
CVE-2020-1601
|
2024-11-21 14:10 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208758
|
6.5 |
MEDIUM
Network
|
juniper
|
junos
|
In a Point-to-Multipoint (P2MP) Label Switched Path (LSP) scenario, an uncontrolled resource consumption vulnerability in the Routing Protocol Daemon (RPD) in Juniper Networks Junos OS allows a speci…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2020-1600
|
2024-11-21 14:10 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208759
|
8.8 |
HIGH
Network
|
gnu
|
binutils
|
An issue was discovered in binutils libbfd.c 2.36 relating to the auxiliary symbol data allows attackers to read or write to system memory or cause a denial of service.
|
NVD-CWE-noinfo
|
CVE-2020-19726
|
2024-11-21 14:09 |
2023-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
208760
|
7.5 |
HIGH
Network
|
oisf
pfsense
|
suricata
suricata_package
pfsense
|
Directory Traversal vulnerability found in Pfsense v.2.1.3 and Pfsense Suricata v.1.4.6 pkg v.1.0.1 allows a remote attacker to obtain sensitive information via the file parameter to suricata/suricat…
|
CWE-22
Path Traversal
|
CVE-2020-19678
|
2024-11-21 14:09 |
2023-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
