CVE-2018-0037

🗓️ 11 Jul 2018 18:00:00Reported by juniperType

Junos OS RPD process crash and remote code execution via crafted BGP NOTIFICATION message

Reporter	Title	Published	Views	Family All 7
ATTACKERKB	Junos OS: RPD daemon crashes due to receipt of crafted BGP NOTIFICATION messages	11 Jul 201818:29	–	attackerkb
Cvelist	CVE-2018-0037 Junos OS: RPD daemon crashes due to receipt of crafted BGP NOTIFICATION messages	11 Jul 201818:00	–	cvelist
EUVD	EUVD-2018-0861	7 Oct 202500:30	–	euvd
Tenable Nessus	Juniper Junos RCE (JSA10871)	2 Jun 202000:00	–	nessus
NVD	CVE-2018-0037	11 Jul 201818:29	–	nvd
OSV	CVE-2018-0037	11 Jul 201818:29	–	osv
Prion	Remote code execution	11 Jul 201818:29	–	prion

NVD

Vulners

Node

juniper junosMatch15.1f2

juniper junosMatch15.1f5-s7

juniper junosMatch15.1f6

juniper junosMatch15.1f6-s3

juniper junosMatch15.1f7

juniper junosMatch15.1r3

juniper junosMatch15.1r5

juniper junosMatch15.1r7

[
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1F5*",
        "status": "affected",
        "version": "15.1F5-S7",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "15.1F6-S10",
            "status": "unaffected"
          }
        ],
        "lessThan": "15.1F6*",
        "status": "affected",
        "version": "15.1F6-S3",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1F7*",
        "status": "affected",
        "version": "15.1F7",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "15.1R6-S6, 15.1R7",
            "status": "unaffected"
          }
        ],
        "lessThan": "15.1*",
        "status": "affected",
        "version": "15.1R5",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
kb	www.kb.juniper.net/JSA10871
securitytracker	www.securitytracker.com/id/1041339

21 Nov 2024 03:37Current

9.8High risk

Vulners AI Score9.8

CVSS 27.5

CVSS 39.8

EPSS0.01724

CWE-20