Juniper Networks - Channel: Security Advisories Category: QFX Series http://kb.juniper.net/InfoCenter/index?page=home Security Advisories by: QFX Series en Copyright © 2002, 2021, Oracle and/or its affiliates. All rights reserved. Oracle Knowledge Information Manager http://blogs.law.harvard.edu/tech/rss <![CDATA[JSA11200 - 2021-07 Security Bulletin: Junos OS: Upon receipt of specific sequences of genuine packets destined to the device the kernel will crash and restart (vmcore) (CVE-2021-0283, CVE-2021-0284) ]]> Wed, 14 Jul 2021 12:00:00 -0400 <![CDATA[JSA11245 - 2021-10 Security Bulletin: Junos OS and Junos OS Evolved: python-cryptography 3.2 is vulnerable to Bleichenbacher timing attacks in the RSA decryption API via timed processing of valid PKCS#1 v1.5 ciphertext. (CVE-2020-25659) ]]> Wed, 13 Oct 2021 12:00:00 -0400 <![CDATA[JSA11236 - 2021-10 Security Bulletin: Junos OS: QFX5000 Series: Traffic from the network internal to the device (128.0.0.0) may be forwarded to egress interfaces (CVE-2021-31371) ]]> Wed, 13 Oct 2021 12:00:00 -0400 <![CDATA[JSA11211 - 2021-10 Security Bulletin: Junos OS Evolved: BGP and LDP sessions with TCP MD5 authentication established with peers not configured for authentication (CVE-2021-0297) ]]> Wed, 13 Oct 2021 12:00:00 -0400 <![CDATA[JSA11213 - 2021-10 Security Bulletin: Junos OS: Kernel crash (vmcore) upon receipt of a malformed IPv6 packet (CVE-2021-0299) ]]> Wed, 13 Oct 2021 12:00:00 -0400 <![CDATA[JSA11215 - 2021-10 Security Bulletin: Junos OS and Junos OS Evolved: Privilege escalation vulnerability in Juniper Extension Toolkit (JET) (CVE-2021-31350) ]]> Wed, 13 Oct 2021 12:00:00 -0400 <![CDATA[JSA11218 - 2021-10 Security Bulletin: Junos OS and Junos OS Evolved: RPD core upon receipt of specific BGP update (CVE-2021-31353) ]]> Wed, 13 Oct 2021 12:00:00 -0400 <![CDATA[JSA11219 - 2021-10 Security Bulletin: Junos OS and Junos OS Evolved: A vulnerability in the Juniper Agile License Client may allow an attacker to perform Remote Code Execution (RCE) (CVE-2021-31354) ]]> Wed, 13 Oct 2021 12:00:00 -0400 <![CDATA[JSA11220 - 2021-10 Security Bulletin: Junos OS: Stored Cross-Site Scripting (XSS) vulnerability in captive portal (CVE-2021-31355) ]]> Wed, 13 Oct 2021 12:00:00 -0400 <![CDATA[JSA11221 - 2021-10 Security Bulletin: Junos OS Evolved: Multiple shell-injection vulnerabilities in EVO UI wrapper scripts ]]> Wed, 13 Oct 2021 12:00:00 -0400