Instituto Nacional de ciberseguridad. Sección Incibe
Instituto Nacional de Ciberseguridad. Sección INCIBE-CERT

Go to Calendar     Go to Press Room     Go to Newsletters subscription

Search

Vulnerabilities

With the aim of informing, warning and helping professionals with the latest security vulnerabilities in technology systems, we have made a database available for users interested in this information, which is in Spanish and includes all of the latest documented and recognised vulnerabilities.

This repository, with over 75,000 registers, is based on the information from the NVD (National Vulnerability Database) – by virtue of a partnership agreement – through which INCIBE translates the included information into Spanish.

On occasions this list will show vulnerabilities that have still not been translated, as they are added while the INCIBE team is still carrying out the translation process. The CVE  (Common Vulnerabilities and Exposures) Standard for Information Security Vulnerability Names is used with the aim to support the exchange of information between different tools and databases.

All vulnerabilities collected are linked to different information sources, as well as available patches or solutions provided by manufacturers and developers. It is possible to carry out advanced searches, as there is the option to select different criteria to narrow down the results, some examples being vulnerability types, manufacturers and impact levels, among others.

Through RSS feeds or Newsletters we can be informed daily about the latest vulnerabilities added to the repository. Below there is a list, updated daily, where you can discover the latest vulnerabilities.

CVE-2026-33785
Publication date:
09/04/2026
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with low privileges to execute specific commands which will lead to a complete compromise of managed devices.<br /> <br /> Any user logged in, without requiring specific privileges, can issue &amp;#39;request csds&amp;#39; CLI operational commands. These commands are only meant to be executed by high privileged or users designated for Juniper Device Manager (JDM) / Connected Security Distributed Services (CSDS) operations as they will impact all aspects of the devices managed via the respective MX.<br /> <br /> This issue affects Junos OS on MX Series:<br /> <br /> <br /> <br /> * 24.4 releases before 24.4R2-S3, <br /> * 25.2 releases before 25.2R2.<br /> <br /> <br /> <br /> <br /> This issue does not affect Junos OS releases before 24.4.
Severity CVSS v4.0: MEDIUM
Last modification:
17/04/2026

CVE-2026-33782
Publication date:
09/04/2026
A Missing Release of Memory after Effective Lifetime vulnerability in the DHCP daemon (jdhcpd) of Juniper Networks Junos OS on MX Series, allows an adjacent, unauthenticated attacker to cause a memory leak, that will eventually cause a complete Denial-of-Service (DoS).<br /> <br /> In a DHCPv6 over PPPoE, or DHCPv6 over VLAN with Active lease query or Bulk lease query scenario, every subscriber logout will leak a small amount of memory. When all available memory has been exhausted, jdhcpd will crash and restart which causes a complete service impact until the process has recovered.<br /> <br /> The memory usage of jdhcpd can be monitored with:<br /> <br /> user@host&gt; show system processes extensive | match jdhcpd<br /> <br /> <br /> <br /> This issue affects Junos OS:<br /> <br /> * all versions before 22.4R3-S1,<br /> * 23.2 versions before 23.2R2,<br /> * 23.4 versions before 23.4R2.
Severity CVSS v4.0: HIGH
Last modification:
17/04/2026

CVE-2026-33781
Publication date:
09/04/2026
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on specific EX and QFX Series devices allow an unauthenticated, adjacent attacker to cause a complete Denial of Service (DoS).<br /> <br /> On EX4k, and QFX5k platforms configured as service-provider edge devices, if L2PT is enabled on the UNI and VSTP is enabled on NNI in VXLAN scenarios, receiving VSTP BPDUs on UNI leads to packet buffer allocation failures, resulting in the device to not pass traffic anymore until it is manually recovered with a restart.This issue affects Junos OS:<br /> <br /> <br /> <br /> * 24.4 releases before 24.4R2,<br /> * 25.2 releases before 25.2R1-S1, 25.2R2.<br /> <br /> <br /> <br /> <br /> This issue does not affect Junos OS releases before 24.4R1.
Severity CVSS v4.0: HIGH
Last modification:
17/04/2026

CVE-2026-33783
Publication date:
09/04/2026
A Function Call With Incorrect Argument Type vulnerability in the sensor interface of Juniper Networks Junos OS Evolved on PTX Series allows a network-based, authenticated attacker with low privileges to cause a complete Denial of Service (DoS).<br /> <br /> <br /> If colored SRTE policy tunnels are provisioned via PCEP, and gRPC is used to monitor traffic in these tunnels, evo-aftmand crashes and doesn&amp;#39;t restart which leads to a complete and persistent service impact. The system has to be manually restarted to recover. The issue is seen only when the Originator ASN field in PCEP contains a value larger than 65,535 (32-bit ASN). The issue is not reproducible when SRTE policy tunnels are statically configured.<br /> <br /> <br /> This issue affects Junos OS Evolved on PTX Series: <br /> <br /> <br /> <br /> * all versions before 22.4R3-S9-EVO,<br /> * 23.2 versions before 23.2R2-S6-EVO,<br /> * 23.4 versions before 23.4R2-S7-EVO,<br /> * 24.2 versions before 24.2R2-S4-EVO,<br /> * 24.4 versions before 24.4R2-S2-EVO,<br /> * 25.2 versions before 25.2R1-S2-EVO, 25.2R2-EVO.
Severity CVSS v4.0: HIGH
Last modification:
17/04/2026

CVE-2026-33776
Publication date:
09/04/2026
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS and Junos OS Evolved allows a local user with low privileges to read sensitive information.<br /> <br /> A local user with low privileges can execute the CLI command &amp;#39;show mgd&amp;#39; with specific arguments which will expose sensitive information.<br /> <br /> This issue affects<br /> <br /> Junos OS:<br /> * all versions before 22.4R3-S8,<br /> * 23.2 versions before 23.2R2-S6,<br /> * 23.4 versions before 23.4R2-S6,<br /> * 24.2 versions before 24.2R2-S4,<br /> * 24.4 versions before 24.4R2-S1,<br /> * 25.2 version before 25.2R1-S2, 25.2R2;<br /> <br /> <br /> <br /> Junos OS Evolved:<br /> * all versions before 23.2R2-S6-EVO,<br /> * 23.4 version before 23.4R2-S6-EVO,<br /> * 24.2 version before 24.2R2-S4-EVO,<br /> * 24.4 versions before 24.4R2-S1-EVO,<br /> * 25.2 versions before 25.2R2-EVO.
Severity CVSS v4.0: MEDIUM
Last modification:
16/04/2026

CVE-2026-33779
Publication date:
09/04/2026
An Improper Following of a Certificate&amp;#39;s Chain of Trust vulnerability in J-Web of Juniper Networks Junos OS on SRX Series allows a PITM to intercept the communication of the device and get access to confidential information and potentially modify it.<br /> <br /> When an SRX device is provisioned to connect to Security Director (SD) cloud, it doesn&amp;#39;t perform sufficient verification of the received server certificate. This allows a PITM to intercept the communication between the SRX and SD cloud and access credentials and other sensitive information.<br /> <br /> This issue affects Junos OS:<br /> * all versions before 22.4R3-S9,<br /> * 23.2 versions before 23.2R2-S6,<br /> * 23.4 versions before 23.4R2-S7,<br /> * 24.2 versions before 24.2R2-S3,<br /> * 24.4 versions before 24.4R2-S2,<br /> * 25.2 versions before 25.2R1-S2, 25.2R2.
Severity CVSS v4.0: HIGH
Last modification:
17/04/2026

CVE-2026-33778
Publication date:
09/04/2026
An Improper Validation of Syntactic Correctness of Input vulnerability in the IPsec library used by kmd and iked of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated, network-based attacker to cause a complete Denial-of-Service (DoS).<br /> <br /> If an affected device receives a specifically malformed first ISAKMP packet from the initiator, the kmd/iked process will crash and restart, which momentarily prevents new security associations (SAs) for from being established. Repeated exploitation of this vulnerability causes a complete inability to establish new VPN connections.<br /> <br /> This issue affects Junos OS on <br /> <br /> SRX Series and MX Series:<br /> <br /> <br /> <br /> * all versions before 22.4R3-S9,<br /> * 23.2 version before 23.2R2-S6,<br /> * 23.4 version before 23.4R2-S7,<br /> * 24.2 versions before 24.2R2-S4,<br /> * 24.4 versions before 24.4R2-S3,<br /> * 25.2 versions before 25.2R1-S2, 25.2R2.
Severity CVSS v4.0: HIGH
Last modification:
17/04/2026

CVE-2026-33775
Publication date:
09/04/2026
A Missing Release of Memory after Effective Lifetime vulnerability in the BroadBand Edge subscriber management daemon (bbe-smgd) of Juniper Networks Junos OS on MX Series allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS).<br /> <br /> If the authentication packet-type option is configured and a received packet does not match that packet type, the memory leak occurs. When all memory <br /> <br /> available to bbe-smgd has been consumed, no new subscribers will be able to login.<br /> <br /> The memory utilization of bbe-smgd can be monitored with the following show command:<br /> <br /> user@host&gt; show system processes extensive | match bbe-smgd<br /> <br /> The below log message can be observed when this limit has been reached:<br /> <br /> bbesmgd[]: %DAEMON-3-SMD_DPROF_RSMON_ERROR: Resource unavailability, Reason: Daemon Heap Memory exhaustion<br /> <br /> <br /> This issue affects Junos OS on MX Series:<br /> * all versions before 22.4R3-S8,<br /> * 23.2 versions before 23.2R2-S5,<br /> * 23.4 versions before 23.4R2-S6,<br /> * 24.2 versions before 24.2R2-S2,<br /> * 24.4 versions before 24.4R2,<br /> * 25.2 versions before 25.2R2.
Severity CVSS v4.0: HIGH
Last modification:
17/04/2026

CVE-2026-33780
Publication date:
09/04/2026
A Missing Release of Memory after Effective Lifetime vulnerability in the Layer 2 Address Learning Daemon (l2ald) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause a memory leak ultimately leading to a Denial of Service (DoS).<br /> <br /> <br /> <br /> In an EVPN-MPLS scenario, routes learned from remote multi-homed Provider Edge (PE) devices are programmed as ESI routes. Due to a logic issue in the l2ald memory management, memory allocated for these routes is not released when there is churn for these routes. As a result, memory leaks in the l2ald process which will ultimately lead to a crash and restart of l2ald.<br /> <br /> Use the following command to monitor the memory consumption by l2ald:<br /> <br /> user@device&gt; show system process extensive | match "PID|l2ald" <br /> <br /> <br /> <br /> This issue affects:<br /> <br /> Junos OS:<br /> <br /> <br /> <br /> * all versions before 22.4R3-S5,<br /> * 23.2 versions before 23.2R2-S3,<br /> * 23.4 versions before 23.4R2-S4,<br /> * 24.2 versions before 24.2R2;<br /> <br /> <br /> <br /> <br /> Junos OS Evolved:<br /> <br /> <br /> <br /> * all versions before 22.4R3-S5-EVO,<br /> * 23.2 versions before 23.2R2-S3-EVO,<br /> * 23.4 versions before 23.4R2-S4-EVO,<br /> * 24.2 versions before 24.2R2-EVO.
Severity CVSS v4.0: HIGH
Last modification:
17/04/2026

CVE-2026-33771
Publication date:
09/04/2026
A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS might allow an unauthenticated, network-based attacker to exploit weak passwords of local accounts and potentially take full control of the device.<br /> <br /> The password management menu enables the administrator to set password complexity requirements, but these settings are not saved. The issue can be verified with the menu option "Show password requirements". Failure to enforce the intended requirements can lead to weak passwords being used, which significantly increases the likelihood that an attacker can guess these and subsequently attain unauthorized access.<br /> <br /> <br /> <br /> This issue affects CTP OS versions 9.2R1 and 9.2R2.
Severity CVSS v4.0: CRITICAL
Last modification:
13/04/2026

CVE-2026-33774
Publication date:
09/04/2026
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on MX Series allows an unauthenticated, network-based attacker to bypass the configured firewall filter and access the control-plane of the device.<br /> <br /> On MX platforms with <br /> <br /> MPC10, MPC11, LC4800 or LC9600<br /> <br /> line cards, and MX304, firewall filters applied on a loopback interface lo0.n (where n is a non-0 number) don&amp;#39;t get executed when lo0.n is in the global VRF / default routing-instance.<br /> <br /> An affected configuration would be:<br /> <br /> user@host# show configuration interfaces lo0 | display set<br /> set interfaces lo0 unit 1 family inet filter input <br /> <br /> where a firewall filter is applied to a non-0 loopback interface, but that loopback interface is not referred to in any routing-instance (RI) configuration, which implies that it&amp;#39;s used in the default RI.<br /> <br /> The issue can be observed with the CLI command:<br /> <br /> user@device&gt; show firewall counter filter <br /> <br /> not showing any matches.<br /> <br /> This issue affects Junos OS on MX Series:<br /> <br /> * all versions before 23.2R2-S6,<br /> * 23.4 versions before 23.4R2-S7,<br /> * 24.2 versions before 24.2R2,<br /> * 24.4 versions before 24.4R2.
Severity CVSS v4.0: MEDIUM
Last modification:
13/04/2026

CVE-2026-33773
Publication date:
09/04/2026
An Incorrect Initialization of Resource vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on specific EX Series and QFX Series device allows an unauthenticated, network-based attacker to cause an integrity impact to downstream networks.<br /> <br /> When the same family inet or inet6 filter is applied on an IRB interface and on a physical interface as egress filter on EX4100, EX4400, EX4650 and QFX5120 devices, only one of the two filters will be applied, which can lead to traffic being sent out one of these interfaces which should have been blocked.<br /> <br /> This issue affects Junos OS on EX Series and QFX Series:<br /> * 23.4 version 23.4R2-S6,<br /> * 24.2 version 24.2R2-S3.<br /> <br /> <br /> No other Junos OS versions are affected.
Severity CVSS v4.0: MEDIUM
Last modification:
17/04/2026
Subscribe to Vulnerabilities