juniper security advisories
12 threat alerts tracking vulnerabilities and security advisories that affect juniper products.
Vulnios monitors juniper CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent juniper security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2016-1279 — juniper — junos
J-Web in Juniper Junos OS before 12.1X46-D45, 12.1X46-D50, 12.1X47 before 12.1X47-D35, 12.3 before 12.3R12, 12.3X48 before 12.3X48-D25, 13.3 before 13.3R10, 13.3R9 before 13.3R9-S1, 14.1 before 14.1R7
criticalCVE-2016-1279Critical Vulnerability: CVE-2013-6014 — juniper — junos
Juniper Junos 10.4 before 10.4S15, 11.4 before 11.4R9, 11.4X27 before 11.4X27.44, 12.1 before 12.1R7, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.2 before 12.2R6, 12.3 before 12.3R3, 13
criticalCVE-2013-6014Critical Vulnerability: CVE-2017-10622 — juniper — junos_space
An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthenticated network based attacker to login as any privileged user. This issue
criticalCVE-2017-10622Critical Vulnerability: CVE-2016-1265 — juniper — junos_space
A remote unauthenticated network based attacker with access to Junos Space may execute arbitrary code on Junos Space or gain access to devices managed by Junos Space using cross site request forgery (
criticalCVE-2016-1265Critical Vulnerability: CVE-2017-10615 — juniper — junos, ex3200
A vulnerability in the pluggable authentication module (PAM) of Juniper Networks Junos OS may allow an unauthenticated network based attacker to potentially execute arbitrary code or crash daemons suc
criticalCVE-2017-10615Critical Vulnerability: CVE-2017-2336 — juniper — screenos
A reflected cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running ScreenOS allows a network based attacker to inject HTML/JavaScript content
criticalCVE-2017-2336Critical Vulnerability: CVE-2017-2349 — juniper — junos
A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series devices potentially allows a user with login access to the device to execute shell commands and elevate
criticalCVE-2017-2349Critical Vulnerability: CVE-2017-2343 — juniper — junos, srx100
The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to provide simple integration of user profiles on top of the existing fir
criticalCVE-2017-2343Critical Vulnerability: CVE-2017-2345 — juniper — junos
On Junos OS devices with SNMP enabled, a network based attacker with unfiltered access to the RE can cause the Junos OS snmpd daemon to crash and restart by sending a crafted SNMP packet. Repeated cra
criticalCVE-2017-2345Critical Vulnerability: CVE-2017-10601 — juniper — junos
A specific device configuration can result in a commit failure condition. When this occurs, a user is logged in without being prompted for a password while trying to login through console, ssh, ftp, t
criticalCVE-2017-10601Critical Vulnerability: CVE-2017-2320 — juniper — northstar_controller
A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various denials o
criticalCVE-2017-2320Critical Vulnerability: CVE-2016-4926 — juniper — junos_space
Insufficient authentication vulnerability in Junos Space before 15.2R2 allows remote network based users with access to Junos Space web interface to perform certain administrative tasks without authen
criticalCVE-2016-4926
Track juniper exposure across your environment
Vulnios automatically cross-references your asset inventory against new juniper CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan