CVE-2019-0051— SRX5000 Series: Denial of Service vulnerability in SSL-Proxy feature.
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-0051
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SRX5000 Series: Denial of Service vulnerability in SSL-Proxy feature.
Source: NVD (National Vulnerability Database)
Vulnerability Description
SSL-Proxy feature on SRX devices fails to handle a hardware resource limitation which can be exploited by remote SSL/TLS servers to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition. For this issue to occur, clients protected by the SRX device must initiate a connection to the malicious server. This issue affects: Juniper Networks Junos OS on SRX5000 Series: 12.3X48 versions prior to 12.3X48-D85; 15.1X49 versions prior to 15.1X49-D180; 17.3 versions prior to 17.3R3-S7; 17.4 versions prior to 17.4R2-S6, 17.4R3; 18.1 versions prior to 18.1R3-S8; 18.2 versions prior to 18.2R3; 18.3 versions prior to 18.3R2; 18.4 versions prior to 18.4R2; 19.1 versions prior to 19.1R2.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
对异常条件的处理不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Juniper Networks SRX5000 Junos OS 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Juniper Networks SRX5000是美国瞻博网络(Juniper Networks)公司的一款5000系列安全服务网关设备。Junos OS是一套专用于该公司的硬件设备的网络操作系统。 Juniper Networks SRX5000中的Junos OS存在安全漏洞。该漏洞源于SSL代理功能没有正确处理硬件资源限制。远程攻击者可利用该漏洞导致流程中断。以下产品及版本受到影响:Juniper Networks Junos OS 12.3X48版本,15.1X49版本,17.4版本,18.1版本
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Juniper Networks | Junos OS | 12.3X48 ~ 12.3X48-D85 | - |
II. Public POCs for CVE-2019-0051
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-0051
请登录查看更多情报信息。
Same Patch Batch · Juniper Networks · 2019-10-09 · 25 CVEs total
| CVE-2019-0047 | 8.8 HIGH | Junos OS: Persistent XSS vulnerability in J-Web |
| CVE-2019-0070 | 8.8 HIGH | Junos OS: NFX Series: An Improper Input Validation weakness allows a malicious local attac |
| CVE-2019-0071 | 7.8 HIGH | Junos OS: EX2300, EX3400 Series: Veriexec signature checking not enforced in specific vers |
| CVE-2019-0058 | 7.8 HIGH | Junos OS: SRX Series: A weakness in the Veriexec subsystem may allow privilege escalation. |
| CVE-2019-0057 | 7.8 HIGH | NFX Series: An attacker may be able to take control of the JDM application and subsequentl |
| CVE-2019-0061 | 7.8 HIGH | Junos OS: Insecure management daemon (MGD) configuration may allow local privilege escalat |
| CVE-2019-0060 | 7.5 HIGH | Junos OS: SRX Series: flowd process crash due to processing of specific transit IP packets |
| CVE-2019-0066 | 7.5 HIGH | Junos OS: A malformed IPv4 packet received by Junos in an NG-mVPN scenario may cause the r |
| CVE-2019-0056 | 7.5 HIGH | Junos OS: MX Series: An MPC10 Denial of Service (DoS) due to OSPF states transitioning to |
| CVE-2019-0055 | 7.5 HIGH | Junos OS: SRX Series: An attacker may cause flowd to crash by sending certain valid SIP tr |
| CVE-2019-0059 | 7.5 HIGH | Junos OS: The routing protocol process (rpd) may crash and generate core files upon receip |
| CVE-2019-0050 | 7.5 HIGH | Junos OS: SRX1500: Denial of service due to crash of srxpfe process under heavy traffic co |
| CVE-2019-0064 | 7.5 HIGH | Junos OS: SRX5000 Series: flowd process crash due to receipt of specific TCP packet |
| CVE-2019-0062 | 7.5 HIGH | Junos OS: Session fixation vulnerability in J-Web |
| CVE-2019-0075 | 7.5 HIGH | Junos OS: SRX Series: Denial of Service vulnerability in srxpfe related to PIM |
| CVE-2019-0054 | 6.8 MEDIUM | Junos OS: SRX Series: An attacker may be able to perform Man-in-the-Middle (MitM) attacks |
| CVE-2019-0073 | 6.6 MEDIUM | Junos OS: PKI key pairs are exported with insecure file permissions |
| CVE-2019-0063 | 6.5 MEDIUM | Junos OS: MX Series: jdhcpd crash when receiving a specific crafted DHCP response message |
| CVE-2019-0068 | 6.5 MEDIUM | Junos OS: SRX Series: Denial of Service vulnerability in flowd due to multicast packets |
| CVE-2019-0067 | 6.5 MEDIUM | Junos OS: Kernel crash (vmcore) upon receipt of a specific link-local IPv6 packet on devic |
Showing top 20 of 25 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Junos OS
- CVE-2026-33791
Junos OS and Junos OS Evolved: Execution of crafted CLI comm - CVE-2026-33790
Junos OS: SRX Series: In a NAT64 configuration, receipt of a - CVE-2026-33787
Junos OS: SRX1500, SRX4100, SRX4200, SRX4600: When a specifi - CVE-2026-33785
Junos OS: MX Series: Missing Authorization for specific 'req - CVE-2026-33781
Junos OS: EX Series, QFX Series: In a VXLAN scenario when sp
Same vendor: Juniper Networks
- CVE-2026-33791
Junos OS and Junos OS Evolved: Execution of crafted CLI comm - CVE-2026-33790
Junos OS: SRX Series: In a NAT64 configuration, receipt of a - CVE-2026-33787
Junos OS: SRX1500, SRX4100, SRX4200, SRX4600: When a specifi - CVE-2026-33785
Junos OS: MX Series: Missing Authorization for specific 'req - CVE-2026-33784
JSI Virtual Lightweight Collector: Default password is not r
Same weakness: CWE-755
- CVE-2026-23666
.NET Framework Denial of Service Vulnerability - CVE-2026-40074
SvelteKit's invalidated redirect in handle hook causes Denia - CVE-2026-28542
Huawei EMUI和Huawei HarmonyOS 安全漏洞 - CVE-2026-27195
Wasmtime is vulnerable to panic when dropping a `[Typed]Func - CVE-2026-27586
Caddy's mTLS client authentication silently fails open when
V. Comments for CVE-2019-0051
No comments yet