Lucene search

[email protected]CVE-2014-0617

HistoryJan 15, 2014 - 4:08 p.m.

CVE-2014-0617

2014-01-1516:08:04

[email protected]

web.nvd.nist.gov

juniper

junos

cve-2014-0617

srx series

denial of service

flowd crash

nvd

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.5%

JSON

Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash) via a crafted IP packet.

Affected configurations

NVD

Node

juniperjunosMatch10.4r

juniperjunosMatch10.4s

juniperjunosMatch11.4

juniperjunosMatch12.1r

AND

junipersrx100Match-

junipersrx110Match-

junipersrx1400Match-

junipersrx210Match-

junipersrx220Match-

junipersrx240Match-

junipersrx3400Match-

junipersrx3600Match-

junipersrx550Match-

junipersrx5600Match-

junipersrx5800Match-

junipersrx650Match-

CPENameOperatorVersion
juniper:junosjuniper junoseq10.4r
juniper:junosjuniper junoseq10.4s
juniper:junosjuniper junoseq11.4
juniper:junosjuniper junoseq12.1r
juniper:srx100juniper srx100eq-
juniper:srx110juniper srx110eq-
juniper:srx1400juniper srx1400eq-
juniper:srx210juniper srx210eq-
juniper:srx220juniper srx220eq-
juniper:srx240juniper srx240eq-

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	10.4r
juniper:junos	juniper junos	eq	10.4s
juniper:junos	juniper junos	eq	11.4
juniper:junos	juniper junos	eq	12.1r
juniper:srx100	juniper srx100	eq	-
juniper:srx110	juniper srx110	eq	-
juniper:srx1400	juniper srx1400	eq	-
juniper:srx210	juniper srx210	eq	-
juniper:srx220	juniper srx220	eq	-
juniper:srx240	juniper srx240	eq	-