Vulnerability Details CVE-2016-1277
Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D40, 12.3X48 before 12.3X48-D30, 13.3 before 13.3R9, 14.1 before 14.1R8, 14.1X53 before 14.1X53-D40, 14.2 before 14.2R6, 15.1 before 15.1F6 or 15.1R3, and 15.1X49 before 15.1X49-D40, when configured with a GRE or IPIP tunnel, allow remote attackers to cause a denial of service (kernel panic) via a crafted ICMP packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.8%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 7.1
References
Products affected by CVE-2016-1277
-
cpe:2.3:o:juniper:junos:12.1x44
-
cpe:2.3:o:juniper:junos:12.1x46
-
cpe:2.3:o:juniper:junos:12.1x47
-
cpe:2.3:o:juniper:junos:12.3x48
-
cpe:2.3:o:juniper:junos:13.3
-
cpe:2.3:o:juniper:junos:14.1
-
cpe:2.3:o:juniper:junos:14.1x53
-
cpe:2.3:o:juniper:junos:14.2
-
cpe:2.3:o:juniper:junos:15.1
-
cpe:2.3:o:juniper:junos:15.1x49