Juniper Networks - Channel: Security Advisories Category: PTX Series http://kb.juniper.net/InfoCenter/index?page=home Security Advisories by: PTX Series en Copyright © 2002, 2022, Oracle and/or its affiliates. All rights reserved. Oracle Knowledge Information Manager http://blogs.law.harvard.edu/tech/rss <![CDATA[JSA11253 - 2021-10 Security Bulletin: Junos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root (CVE-2021-31385) ]]> Wed, 13 Oct 2021 12:00:00 -0400 <![CDATA[JSA11259 - 2021-12 Out of Cycle Security Advisory: Multiple Products: Apache Log4j2 JNDI features do not protect against attacker controlled LDAP and other JNDI related endpoints. (CVE-2021-44228, CVE-2021-4104, CVE-2021-45046 and CVE-2021-42550) ]]> Mon, 13 Dec 2021 11:26:00 -0500 <![CDATA[JSA11283 - 2022-01 Security Bulletin: Junos OS and Junos OS Evolved: After receiving a specific number of crafted packets snmpd will segmentation fault (SIGSEGV) requiring a manual restart. (CVE-2022-22177) ]]> Wed, 12 Jan 2022 12:00:00 -0500 <![CDATA[JSA11264 - 2022-01 Security Bulletin: Junos OS: Certificate validation is skipped when fetching system scripts from a HTTPS URL (CVE-2022-22156) ]]> Wed, 12 Jan 2022 12:00:00 -0500 <![CDATA[JSA11267 - 2022-01 Security Bulletin: Junos OS: An attacker sending crafted packets can cause a traffic and CPU Denial of Service (DoS). (CVE-2022-22159) ]]> Wed, 12 Jan 2022 12:00:00 -0500 <![CDATA[JSA11270 - 2022-01 Security Bulletin: Junos OS: A low privileged user can elevate their privileges to the ones of the highest privileged j-web user logged in (CVE-2022-22162) ]]> Wed, 12 Jan 2022 12:00:00 -0500 <![CDATA[JSA11271 - 2022-01 Security Bulletin: Junos OS: jdhcpd crashes upon receipt of a specific DHCPv6 packet (CVE-2022-22163) ]]> Wed, 12 Jan 2022 12:00:00 -0500 <![CDATA[JSA11272 - 2022-01 Security Bulletin: Junos OS Evolved: Telnet service may be enabled when it is expected to be disabled. (CVE-2022-22164) ]]> Wed, 12 Jan 2022 12:00:00 -0500 <![CDATA[JSA11274 - 2022-01 Security Bulletin: Junos OS: An rpd core will occur if BGP update tracing is configured and an update containing a malformed BGP SR-TE policy tunnel attribute is received (CVE-2022-22166) ]]> Wed, 12 Jan 2022 12:00:00 -0500 <![CDATA[JSA11276 - 2022-01 Security Bulletin: Junos OS and Junos OS Evolved: OSPFv3 session might go into INIT state upon receipt of multiple crafted packets from a trusted neighbor device. (CVE-2022-22169) ]]> Wed, 12 Jan 2022 12:00:00 -0500