1,082 CVEs

8 in CISA KEV

juniper Vulnerabilities

CVE security advisories and vulnerability history for juniper.

1,082

Total CVEs

Published

8

In CISA KEV

Exploited in the wild

27

Public exploits

With known exploit

7.2

Avg CVSS

2002–2026

Overview

juniper has 1,082 published CVE records since 2002, of which 8 are in CISA's Known Exploited Vulnerabilities catalog and 27 have a known public exploit. The average CVSS base score across scored CVEs is 7.2.

This page aggregates every publicly disclosed vulnerability (CVE) affecting juniper products, with severity breakdowns, the most-affected products, the most common weakness types, and the latest disclosures.

Severity and exploitation

How the CVSS severity of juniper's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical41

High450

Medium365

Low0

226 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

8

8 of juniper's CVEs are confirmed exploited in the wild.

Public exploits

27

27 of juniper's CVEs have a known public exploit available.

Most affected products

The juniper products with the most published CVEs.

junos771 CVEs
Junos OS663 CVEs
Junos OS Evolved248 CVEs
srx5800147 CVEs
srx5600147 CVEs
srx5400133 CVEs
srx1500124 CVEs
srx4100120 CVEs

Common weakness types

The CWE weakness categories most often found in juniper CVEs. Follow any weakness for its full explanation.

CNAs that assign these CVEs

The CVE Numbering Authorities that publish juniper CVE records.

Disclosure activity by year

How many juniper CVEs were published each year.

2019

76

2020

86

2021

138

2022

97

2023

100

2024

132

2025

94

2026

43

Latest juniper CVEs

The most recently disclosed vulnerabilities affecting juniper.

Junos OS and Junos OS Evolved: Execution of crafted CLI commands allows for arbitrary shell injection as root
CWE-78
High · CVSS 8.4
EPSS 0.0%2026-04-09
Junos OS: SRX Series: In a NAT64 configuration, receipt of a specific, malformed ICMPv6 packet will cause the srxpfe process to crash and restart.
CWE-754
High · CVSS 8.7
EPSS 0.1%2026-04-09
Junos OS: SRX1500, SRX4100, SRX4200, SRX4600: When a specific show command is executed chassisd crashes
CWE-754
Medium · CVSS 6.8
EPSS 0.0%2026-04-09
Junos OS: MX Series: Missing Authorization for specific 'request' CLI commands in a JDM/CSDS scenario
CWE-862
High · CVSS 8.8
EPSS 0.0%2026-04-09
Junos OS Evolved: PTX Series: If SRTE tunnels provisioned via PCEP are present and specific gRPC queries are received evo-aftmand crashes
CWE-686
High · CVSS 7.1
EPSS 0.1%2026-04-09
Junos OS: EX Series, QFX Series: In a VXLAN scenario when specific control protocol packets are received, memory leaks and eventually no traffic is passed
CWE-754
High · CVSS 7.1
EPSS 0.0%2026-04-09
Junos OS: SRX Series, MX Series: When a specifically malformed first ISAKMP packet is received kmd/iked crashes
CWE-1286
High · CVSS 8.7
EPSS 0.1%2026-04-09
Junos OS and Junos OS Evolved: Specific low privileged CLI command exposes sensitive information
CWE-862
Medium · CVSS 6.8
EPSS 0.0%2026-04-09
Junos OS and Junos OS Evolved: An attacker sending a specific genuine BGP packet causes a BGP reset
CWE-20
High · CVSS 7.4
EPSS 0.0%2026-04-09
Junos OS: SRX Series: Insufficient certificate verification for device to SD cloud communication
CWE-296
High · CVSS 8.3
EPSS 0.0%2026-04-09
Junos OS: MX Series: Mismatch between configured and received packet types causes memory leak in bbe-smgd
CWE-401
High · CVSS 7.1
EPSS 0.0%2026-04-09
Junos OS: MX Series: In specific DHCPv6 scenarios jdhcpd memory increases continuously with subscriber logouts
CWE-401
High · CVSS 8.7
EPSS 0.1%2026-04-09

Track new juniper CVEs as they are disclosed and get AI-written analysis and remediation guidance.

Monitor juniper CVEs

Other vendors

Browse vulnerabilities for other tracked vendors.

mysql1,132 CVEs Fortinet1,125 CVEs PHPGurukul1,111 CVEs jenkinsci1,107 CVEs drupal1,100 CVEs D-Link1,068 CVEs mediatek1,040 CVEs vmware1,036 CVEs

Browse all vendors

Frequently asked questions

Common questions about juniper vulnerabilities.

How many CVEs does juniper have?

juniper has 1,082 published CVE records since 2002, including 137 in the last two years.

How many juniper CVEs are in CISA KEV?

Yes — 8 of juniper's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.

Which juniper products have the most CVEs?

The juniper products with the most published CVEs are junos, Junos OS, Junos OS Evolved, srx5800, srx5600.

What are the most common weakness types in juniper CVEs?

juniper's CVEs most often map to these CWE weakness types: CWE-754 (Improper Check for Unusual or Exceptional Conditions), CWE-401 (Missing Release of Memory after Effective Lifetime), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-755 (Improper Handling of Exceptional Conditions).

Are there public exploits for juniper vulnerabilities?

Yes — 27 of juniper's CVEs have a known public exploit.

How many critical juniper vulnerabilities are there?

juniper has 41 critical and 450 high-severity CVEs.

What is the average severity of juniper CVEs?

The average CVSS base score across juniper's scored CVEs is 7.2.

References

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track juniper vulnerabilities

Monitor new juniper vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing