Lucene search

[email protected]CVE-2017-2315

HistoryApr 24, 2017 - 3:59 p.m.

CVE-2017-2315

2017-04-2415:59:00

CWE-772

[email protected]

web.nvd.nist.gov

juniper networks

ex series

ethernet switches

vulnerability

ipv6

memory leak

nvd

cve-2017-2315

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.7%

JSON

On Juniper Networks EX Series Ethernet Switches running affected Junos OS versions, a vulnerability in IPv6 processing has been discovered that may allow a specially crafted IPv6 Neighbor Discovery (ND) packet destined to an EX Series Ethernet Switch to cause a slow memory leak. A malicious network-based packet flood of these crafted IPv6 NDP packets may eventually lead to resource exhaustion and a denial of service. The affected Junos OS versions are: 12.3 prior to 12.3R12-S4, 12.3R13; 13.3 prior to 13.3R10; 14.1 prior to 14.1R8-S3, 14.1R9; 14.1X53 prior ro 14.1X53-D12, 14.1X53-D40; 14.1X55 prior to 14.1X55-D35; 14.2 prior to 14.2R6-S4, 14.2R7-S6, 14.2R8; 15.1 prior to 15.1R5; 16.1 before 16.1R3; 16.2 before 16.2R1-S3, 16.2R2. 17.1R1 and all subsequent releases have a resolution for this vulnerability.

Affected configurations

NVD

Node

juniperjunosMatch12.3r1

juniperjunosMatch12.3r10

juniperjunosMatch12.3r11

juniperjunosMatch12.3r12

juniperjunosMatch12.3r13

juniperjunosMatch12.3r2

juniperjunosMatch12.3r3

juniperjunosMatch12.3r4

juniperjunosMatch12.3r5

juniperjunosMatch12.3r6

juniperjunosMatch12.3r7

juniperjunosMatch12.3r8

juniperjunosMatch12.3r9

juniperjunosMatch13.3r1

juniperjunosMatch13.3r2

juniperjunosMatch13.3r3

juniperjunosMatch13.3r4

juniperjunosMatch13.3r5

juniperjunosMatch13.3r6

juniperjunosMatch13.3r7

juniperjunosMatch13.3r8

juniperjunosMatch13.3r9

juniperjunosMatch14.1r1

juniperjunosMatch14.1r2

juniperjunosMatch14.1r3

juniperjunosMatch14.1r4

juniperjunosMatch14.1r5

juniperjunosMatch14.1r6

juniperjunosMatch14.1r7

juniperjunosMatch14.1r9

juniperjunosMatch14.1x53d10

juniperjunosMatch14.1x53d40

juniperjunosMatch14.1x55d35

juniperjunosMatch14.2r1

juniperjunosMatch14.2r2

juniperjunosMatch14.2r3

juniperjunosMatch14.2r4

juniperjunosMatch14.2r5

juniperjunosMatch14.2r7

juniperjunosMatch14.2r8

juniperjunosMatch15.1r1

juniperjunosMatch15.1r2

juniperjunosMatch15.1r3

juniperjunosMatch15.1r4

juniperjunosMatch16.1r1

juniperjunosMatch16.2r2

juniperjunosMatch17.1r1

CPENameOperatorVersion
juniper:junosjuniper junoseq12.3
juniper:junosjuniper junoseq13.3
juniper:junosjuniper junoseq14.1
juniper:junosjuniper junoseq14.1x53
juniper:junosjuniper junoseq14.1x55
juniper:junosjuniper junoseq14.2
juniper:junosjuniper junoseq15.1
juniper:junosjuniper junoseq16.1
juniper:junosjuniper junoseq16.2
juniper:junosjuniper junoseq17.1

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	12.3
juniper:junos	juniper junos	eq	13.3
juniper:junos	juniper junos	eq	14.1
juniper:junos	juniper junos	eq	14.1x53
juniper:junos	juniper junos	eq	14.1x55
juniper:junos	juniper junos	eq	14.2
juniper:junos	juniper junos	eq	15.1
juniper:junos	juniper junos	eq	16.1
juniper:junos	juniper junos	eq	16.2
juniper:junos	juniper junos	eq	17.1

CNA Affected

[
  {
    "product": "Junos OS on EX series Ethernet Switches with IPv6 enabled",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "12.3 prior to 12.3R12-S4, 12.3R13"
      },
      {
        "status": "affected",
        "version": "13.3 prior to 13.3R10"
      },
      {
        "status": "affected",
        "version": "14.1 prior to 14.1R8-S3, 14.1R9"
      },
      {
        "status": "affected",
        "version": "14.1X53 prior ro 14.1X53-D12, 14.1X53-D40"
      },
      {
        "status": "affected",
        "version": " 14.1X55 prior to 14.1X55-D35"
      },
      {
        "status": "affected",
        "version": "14.2 prior to 14.2R6-S4, 14.2R7-S6, 14.2R8"
      },
      {
        "status": "affected",
        "version": "15.1 prior to 15.1R5"
      },
      {
        "status": "affected",
        "version": "16.1 before 16.1R3"
      },
      {
        "status": "affected",
        "version": "16.2 before 16.2R1-S3, 16.2R2"
      },
      {
        "status": "affected",
        "version": "17.1R1 and all subsequent releases have a resolution for this vulnerability"
      }
    ]
  }
]

References

www.securityfocus.com/bid/97615

www.securitytracker.com/id/1038253

kb.juniper.net/JSA10781

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.7%

JSON

Related for CVE-2017-2315

openvas1 prion1 cvelist1 nvd1 nessus1