- Home
- Vulnerability & Exploit Database
- Vulnerabilities
Rapid7 Vulnerability & Exploit Database
Juniper Junos OS: 2022-01 Security Bulletin: Junos OS: ACX5448: Multiple third party vulnerabilities resolved in 21.3R2 (JSA11288) (multiple CVEs)
Free InsightVM Trial
No Credit Card Necessary
2024 Attack Intel Report
Latest research by Rapid7 Labs
Juniper Junos OS: 2022-01 Security Bulletin: Junos OS: ACX5448: Multiple third party vulnerabilities resolved in 21.3R2 (JSA11288) (multiple CVEs)
8
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
06/24/2019
03/21/2022
03/21/2022
11/08/2023
Description
In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks).
Solution(s)
- juniper-junos-os-upgrade-latest
References
- https://attackerkb.com/topics/cve-2012-6708
- 100345
- 100515
- 100852
- 100860
- 101051
- 101085
- 101666
- 101977
- 102103
- 102118
- 102726
- 102792
- 102812
- 103188
- 103518
- 103766
- 103953
- 104423
- 104442
- 105138
- 105609
- 105658
- 105758
- 105897
- 106080
- 106145
- 106179
- 106323
- 107174
- 108023
- 109367
- 73683
- 78705
- 82233
- 83802
- 86707
- 91685
- 91787
- 92136
- 92893
- 93183
- 94242
- 94398
- 95370
- 95372
- 95374
- 95377
- 95813
- 95814
- 96014
- 97040
- 97940
- 98050
- 98744
- 99102
- 99134
- 99244
- 257823
- 429301
- 550620
- 782301
- 973527
- CVE - 2012-6708
- CVE - 2014-3467
- CVE - 2014-3468
- CVE - 2014-3469
- CVE - 2015-2809
- CVE - 2015-3193
- CVE - 2015-8853
- CVE - 2015-9251
- CVE - 2016-0701
- CVE - 2016-10195
- CVE - 2016-10196
- CVE - 2016-10197
- CVE - 2016-1238
- CVE - 2016-2381
- CVE - 2016-6185
- CVE - 2016-7055
- CVE - 2016-7444
- CVE - 2016-7543
- CVE - 2016-9401
- CVE - 2016-9840
- CVE - 2016-9841
- CVE - 2016-9842
- CVE - 2016-9843
- CVE - 2017-11695
- CVE - 2017-11696
- CVE - 2017-11697
- CVE - 2017-11698
- CVE - 2017-12814
- CVE - 2017-12837
- CVE - 2017-12883
- CVE - 2017-13019
- CVE - 2017-13020
- CVE - 2017-13021
- CVE - 2017-13022
- CVE - 2017-13023
- CVE - 2017-13024
- CVE - 2017-13025
- CVE - 2017-13026
- CVE - 2017-13027
- CVE - 2017-13028
- CVE - 2017-13029
- CVE - 2017-13030
- CVE - 2017-13031
- CVE - 2017-13032
- CVE - 2017-13033
- CVE - 2017-13034
- CVE - 2017-13035
- CVE - 2017-13036
- CVE - 2017-13037
- CVE - 2017-13038
- CVE - 2017-13039
- CVE - 2017-13040
- CVE - 2017-13041
- CVE - 2017-13042
- CVE - 2017-13043
- CVE - 2017-13044
- CVE - 2017-13045
- CVE - 2017-13046
- CVE - 2017-13047
- CVE - 2017-13048
- CVE - 2017-13049
- CVE - 2017-13050
- CVE - 2017-13051
- CVE - 2017-13052
- CVE - 2017-13053
- CVE - 2017-13054
- CVE - 2017-13055
- CVE - 2017-13687
- CVE - 2017-13688
- CVE - 2017-13689
- CVE - 2017-13690
- CVE - 2017-13725
- CVE - 2017-14491
- CVE - 2017-14492
- CVE - 2017-14493
- CVE - 2017-14494
- CVE - 2017-14495
- CVE - 2017-14496
- CVE - 2017-14970
- CVE - 2017-15107
- CVE - 2017-16808
- CVE - 2017-3144
- CVE - 2017-3169
- CVE - 2017-3731
- CVE - 2017-3732
- CVE - 2017-3735
- CVE - 2017-3736
- CVE - 2017-3737
- CVE - 2017-3738
- CVE - 2017-5334
- CVE - 2017-5335
- CVE - 2017-5336
- CVE - 2017-5337
- CVE - 2017-5461
- CVE - 2017-5462
- CVE - 2017-6519
- CVE - 2017-7502
- CVE - 2017-7507
- CVE - 2017-7869
- CVE - 2017-9214
- CVE - 2017-9263
- CVE - 2017-9265
- CVE - 2017-9778
- CVE - 2018-0732
- CVE - 2018-0734
- CVE - 2018-0737
- CVE - 2018-0739
- CVE - 2018-10103
- CVE - 2018-10105
- CVE - 2018-10846
- CVE - 2018-11574
- CVE - 2018-12015
- CVE - 2018-12438
- CVE - 2018-14461
- CVE - 2018-14462
- CVE - 2018-14463
- CVE - 2018-14464
- CVE - 2018-14465
- CVE - 2018-14466
- CVE - 2018-14467
- CVE - 2018-14468
- CVE - 2018-14469
- CVE - 2018-14470
- CVE - 2018-14879
- CVE - 2018-14880
- CVE - 2018-14881
- CVE - 2018-14882
- CVE - 2018-16227
- CVE - 2018-16228
- CVE - 2018-16229
- CVE - 2018-16230
- CVE - 2018-16300
- CVE - 2018-16451
- CVE - 2018-16452
- CVE - 2018-16868
- CVE - 2018-17204
- CVE - 2018-17205
- CVE - 2018-17206
- CVE - 2018-18311
- CVE - 2018-18312
- CVE - 2018-18313
- CVE - 2018-18314
- CVE - 2018-20346
- CVE - 2018-20506
- CVE - 2018-20843
- CVE - 2018-5407
- CVE - 2018-5733
- CVE - 2018-6797
- CVE - 2018-6798
- CVE - 2018-6829
- CVE - 2018-6913
- CVE - 2019-101018
- CVE - 2019-11358
- CVE - 2019-14834
- CVE - 2019-15166
- CVE - 2019-1547
- CVE - 2019-1551
- CVE - 2019-1552
- CVE - 2019-1559
- CVE - 2019-1563
- CVE - 2019-6470
- CVE - 2019-8457
- CVE - 2019-9924
- CVE - 2020-1968
- CVE - 2020-24659
- CVE - 2020-7042
- CVE - 2020-8036
- CVE - 2020-8597
- DSA-3056
- DSA-3501
- DSA-3628
- DSA-3773
- DSA-3789
- DSA-3831
- DSA-3872
- DSA-3884
- DSA-3896
- DSA-3971
- DSA-3982
- DSA-3989
- DSA-4017
- DSA-4018
- DSA-4065
- DSA-4133
- DSA-4157
- DSA-4158
- DSA-4172
- DSA-4226
- DSA-4347
- DSA-4348
- DSA-4355
- DSA-4400
- DSA-4434
- DSA-4460
- DSA-4472
- DSA-4539
- DSA-4540
- DSA-4547
- DSA-4594
- DSA-4632
- DSA-4855
- Category I
- 2016-A-0030
- 2016-A-0293
- JSA11288
- RHBA-2019:0327
- RHBA-2019:1570
- RHSA-2014:0594
- RHSA-2014:0596
- RHSA-2014:0687
- RHSA-2014:0815
- RHSA-2017:0286
- RHSA-2017:0574
- RHSA-2017:0725
- RHSA-2017:1100
- RHSA-2017:1101
- RHSA-2017:1102
- RHSA-2017:1103
- RHSA-2017:1104
- RHSA-2017:1106
- RHSA-2017:1201
- RHSA-2017:1364
- RHSA-2017:1365
- RHSA-2017:1567
- RHSA-2017:1712
- RHSA-2017:1931
- RHSA-2017:2292
- RHSA-2017:2418
- RHSA-2017:2478
- RHSA-2017:2479
- RHSA-2017:2483
- RHSA-2017:2553
- RHSA-2017:2648
- RHSA-2017:2665
- RHSA-2017:2692
- RHSA-2017:2698
- RHSA-2017:2727
- RHSA-2017:2836
- RHSA-2017:2837
- RHSA-2017:2838
- RHSA-2017:2839
- RHSA-2017:2840
- RHSA-2017:2841
- RHSA-2017:3193
- RHSA-2017:3194
- RHSA-2017:3195
- RHSA-2017:3475
- RHSA-2017:3476
- RHSA-2017:3477
- RHSA-2018:0158
- RHSA-2018:0469
- RHSA-2018:0483
- RHSA-2018:0998
- RHSA-2018:1192
- RHSA-2018:2185
- RHSA-2018:2186
- RHSA-2018:2187
- RHSA-2018:2552
- RHSA-2018:2553
- RHSA-2018:2568
- RHSA-2018:2575
- RHSA-2018:2713
- RHSA-2018:3050
- RHSA-2018:3090
- RHSA-2018:3221
- RHSA-2018:3500
- RHSA-2018:3505
- RHSA-2019:0001
- RHSA-2019:0010
- RHSA-2019:0053
- RHSA-2019:0081
- RHSA-2019:0109
- RHSA-2019:0366
- RHSA-2019:0367
- RHSA-2019:0483
- RHSA-2019:0651
- RHSA-2019:0652
- RHSA-2019:1296
- RHSA-2019:1297
- RHSA-2019:1456
- RHSA-2019:1543
- RHSA-2019:1711
- RHSA-2019:1712
- RHSA-2019:1790
- RHSA-2019:1942
- RHSA-2019:2097
- RHSA-2019:2125
- RHSA-2019:2304
- RHSA-2019:2400
- RHSA-2019:2437
- RHSA-2019:2439
- RHSA-2019:2471
- RHSA-2019:2587
- RHSA-2019:3023
- RHSA-2019:3024
- RHSA-2019:3525
- RHSA-2019:3700
- RHSA-2019:3929
- RHSA-2019:3931
- RHSA-2019:3932
- RHSA-2019:3933
- RHSA-2019:3935
- RHSA-2020:0481
- RHSA-2020:0630
- RHSA-2020:0631
- RHSA-2020:0633
- RHSA-2020:0634
- RHSA-2020:0729
View more
Advanced vulnerability management analytics and reporting.
Key Features
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center