Vulnerability Details CVE-2014-3817
Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.6%
CVSS Severity
CVSS v2 Score 7.8
References
- http://secunia.com/advisories/59136
- http://www.securityfocus.com/bid/68545
- http://www.securitytracker.com/id/1030558
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10635
- http://secunia.com/advisories/59136
- http://www.securityfocus.com/bid/68545
- http://www.securitytracker.com/id/1030558
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10635
Products affected by CVE-2014-3817
-
cpe:2.3:h:juniper:srx100:-
-
cpe:2.3:h:juniper:srx110:-
-
cpe:2.3:h:juniper:srx1400:-
-
cpe:2.3:h:juniper:srx210:-
-
cpe:2.3:h:juniper:srx220:-
-
cpe:2.3:h:juniper:srx240:-
-
cpe:2.3:h:juniper:srx3400:-
-
cpe:2.3:h:juniper:srx3600:-
-
cpe:2.3:h:juniper:srx550:-
-
cpe:2.3:h:juniper:srx5600:-
-
cpe:2.3:h:juniper:srx5800:-
-
cpe:2.3:h:juniper:srx650:-
-
cpe:2.3:o:juniper:junos:11.4
-
cpe:2.3:o:juniper:junos:12.1x44
-
cpe:2.3:o:juniper:junos:12.1x45
-
cpe:2.3:o:juniper:junos:12.1x46
-
cpe:2.3:o:juniper:junos:12.1x47