CVE-2017-10620

🗓️ 13 Oct 2017 17:00:00Reported by juniperType

Juniper Networks Junos OS on SRX series devices not verifying HTTPS server certificate before downloading anti-virus updates

Reporter	Title	Published	Views	Family All 7
CNVD	Juniper SRX Series Appliance Junos OS Denial of Service Vulnerability	19 Oct 201700:00	–	cnvd
Cvelist	CVE-2017-10620 SRX Series: Antivirus updates are downloaded without verification	13 Oct 201717:00	–	cvelist
EUVD	EUVD-2017-2267	7 Oct 202500:30	–	euvd
Tenable Nessus	Juniper Junos HTTPS Server Certificate AV Vulnerability (JSA10822)	20 Oct 201700:00	–	nessus
NVD	CVE-2017-10620	13 Oct 201717:29	–	nvd
OSV	CVE-2017-10620	13 Oct 201717:29	–	osv
Prion	Design/Logic Flaw	13 Oct 201717:29	–	prion

NVD

Vulners

Node

juniper junosMatch12.1x46

juniper junosMatch12.1x46d10

juniper junosMatch12.1x46d15

juniper junosMatch12.1x46d20

juniper junosMatch12.1x46d25

juniper junosMatch12.1x46d30

juniper junosMatch12.1x46d35

juniper junosMatch12.1x46d40

juniper junosMatch12.1x46d45

juniper junosMatch12.1x46d50

juniper junosMatch12.1x46d55

juniper junosMatch12.1x46d60

juniper junosMatch12.1x46d65

AND

juniper srx100Match-

juniper srx110Match-

juniper srx1400Match-

juniper srx1500Match-

juniper srx210Match-

juniper srx220Match-

juniper srx240Match-

juniper srx300Match-

juniper srx320Match-

juniper srx340Match-

juniper srx3400Match-

juniper srx345Match-

juniper srx3600Match-

juniper srx4100Match-

juniper srx4200Match-

juniper srx5400Match-

juniper srx550Match-

juniper srx5600Match-

juniper srx5800Match-

juniper srx650Match-

Node

juniper junosMatch12.3x48

juniper junosMatch12.3x48d10

juniper junosMatch12.3x48d15

juniper junosMatch12.3x48d20

juniper junosMatch12.3x48d25

juniper junosMatch12.3x48d30

juniper junosMatch12.3x48d35

juniper junosMatch12.3x48d40

juniper junosMatch12.3x48d45

juniper junosMatch12.3x48d50

juniper junosMatch12.3x48d55

AND

juniper srx100Match-

juniper srx110Match-

juniper srx1400Match-

juniper srx1500Match-

juniper srx210Match-

juniper srx220Match-

juniper srx240Match-

juniper srx300Match-

juniper srx320Match-

juniper srx340Match-

juniper srx3400Match-

juniper srx345Match-

juniper srx3600Match-

juniper srx4100Match-

juniper srx4200Match-

juniper srx5400Match-

juniper srx550Match-

juniper srx5600Match-

juniper srx5800Match-

juniper srx650Match-

Node

juniper junosMatch15.1x49

juniper junosMatch15.1x49d10

juniper junosMatch15.1x49d100

juniper junosMatch15.1x49d20

juniper junosMatch15.1x49d30

juniper junosMatch15.1x49d35

juniper junosMatch15.1x49d40

juniper junosMatch15.1x49d45

juniper junosMatch15.1x49d50

juniper junosMatch15.1x49d55

juniper junosMatch15.1x49d60

juniper junosMatch15.1x49d65

juniper junosMatch15.1x49d70

juniper junosMatch15.1x49d75

juniper junosMatch15.1x49d80

juniper junosMatch15.1x49d90

AND

juniper srx100Match-

juniper srx110Match-

juniper srx1400Match-

juniper srx1500Match-

juniper srx210Match-

juniper srx220Match-

juniper srx240Match-

juniper srx300Match-

juniper srx320Match-

juniper srx340Match-

juniper srx3400Match-

juniper srx345Match-

juniper srx3600Match-

juniper srx4100Match-

juniper srx4200Match-

juniper srx5400Match-

juniper srx550Match-

juniper srx5600Match-

juniper srx5800Match-

juniper srx650Match-

[
  {
    "platforms": [
      "SRX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "12.1X46 prior to 12.3X46-D71"
      },
      {
        "status": "affected",
        "version": "12.3X48 prior to 12.3X48-D55"
      },
      {
        "status": "affected",
        "version": "15.1X49 prior to 15.1X49-D110"
      }
    ]
  }
]

Source	Link
kb	www.kb.juniper.net/JSA10822

13 May 2026 00:24Current

7.3High risk

Vulners AI Score7.3

CVSS 25.8

CVSS 37.4

EPSS0.00169

CWE-295