<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Cpe:2.3:o:freebsd:freebsd:12.0:p8:*:*:*:*:*:* - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/cpes/cpe2.3ofreebsdfreebsd12.0p8/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Wed, 08 Jul 2026 18:01:34 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/cpes/cpe2.3ofreebsdfreebsd12.0p8/feed.xml" rel="self" type="application/rss+xml"/><item><title>Juniper Networks Releases Security Advisories for Multiple Vulnerabilities, Including Heap Buffer Overflow and Memory Leak</title><link>https://feed.craftedsignal.io/briefs/2026-07-juniper-networks-vulnerabilities/</link><pubDate>Wed, 08 Jul 2026 18:01:34 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-juniper-networks-vulnerabilities/</guid><description>Juniper Networks has released security advisories to address multiple vulnerabilities across several products, including Juniper cRPD, CTPView, Network Director, Junos OS, Junos OS Evolved, Junos OS on MX Series with SPC3 and SRX Series, and Junos Space, with key vulnerabilities like a heap buffer overflow (CVE-2020-7450) and a memory leak (CVE-2026-33799) potentially leading to arbitrary code execution or denial of service.</description><content:encoded><![CDATA[<p>On July 8, 2026, Juniper Networks published security advisories to address critical vulnerabilities affecting a wide range of its networking products. The advisories highlight issues in Juniper cRPD, CTPView, Network Director, Junos OS, Junos OS Evolved, Junos OS on MX Series with SPC3 and SRX Series, and Junos Space. Two notable vulnerabilities are CVE-2020-7450, a heap buffer overflow in the <code>libfetch</code> component of Junos OS Evolved, and CVE-2026-33799, a memory leak in the <code>snmpd</code> daemon affecting both Junos OS and Junos OS Evolved. These flaws could be exploited by remote attackers, potentially leading to arbitrary code execution or denial of service on affected devices. Organizations using Juniper products are strongly urged to review the advisories and apply the necessary updates to mitigate these risks.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>Attacker performs reconnaissance to identify internet-facing Juniper Networks devices running vulnerable versions of Junos OS or Junos OS Evolved.</li>
<li><strong>For CVE-2020-7450 (Junos OS Evolved):</strong> The attacker crafts and sends a malicious HTTP/HTTPS request containing a specially malformed URL to the target device.</li>
<li>The vulnerable <code>libfetch</code> component within Junos OS Evolved attempts to parse the malformed URL, triggering a heap buffer overflow condition.</li>
<li>This heap buffer overflow can be exploited by the attacker to achieve arbitrary code execution on the device, potentially leading to full system compromise.</li>
<li><strong>For CVE-2026-33799 (Junos OS/Evolved):</strong> The attacker crafts and sends a specific, malformed SNMPv3 request to the vulnerable Juniper device.</li>
<li>The <code>snmpd</code> daemon on the device processes the crafted SNMPv3 request, which results in a memory leak within the daemon's allocated memory space.</li>
<li>The attacker continuously sends repeated crafted SNMPv3 requests, causing further memory leaks and gradually depleting the <code>snmpd</code> daemon's resources.</li>
<li>Eventually, the persistent memory exhaustion causes the <code>snmpd</code> daemon to crash, leading to a Denial of Service for SNMP services on the affected Juniper device.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>The identified vulnerabilities pose significant risks to network infrastructure. Exploitation of CVE-2020-7450, a heap buffer overflow, could allow an unauthenticated attacker to achieve arbitrary code execution on Junos OS Evolved devices. This would grant the attacker full control over the device, enabling data exfiltration, network segmentation bypass, or further compromise of the internal network. CVE-2026-33799, a memory leak, can lead to a denial of service for SNMP services on both Junos OS and Junos OS Evolved. While not directly leading to system compromise, a crashed SNMP daemon can disrupt network monitoring, management, and potentially impact other critical services reliant on SNMP, leading to operational downtime and reduced visibility into network health.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Immediately apply the recommended updates and patches provided by Juniper Networks for all affected products as detailed in the Juniper Networks security advisories linked in this brief.</li>
<li>Ensure that internet-facing Junos OS Evolved devices are patched against CVE-2020-7450 to prevent potential arbitrary code execution.</li>
<li>Verify that Junos OS and Junos OS Evolved devices are updated to mitigate CVE-2026-33799 and prevent SNMP service denial of service.</li>
<li>Review the specific security bulletins (e.g., &quot;2026-07 Security Bulletin: CTPView: Multiple vulnerabilities resolved in 9.3R2-3 Release&quot;, &quot;2026-07 Security Bulletin: Junos Space: Multiple vulnerabilities resolved in 26.1R1 Patch V1 Release&quot;) for precise version requirements and update paths.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>vulnerability</category><category>network-device</category><category>juniper</category><category>patch-management</category></item></channel></rss>