CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-2304

Juniper Networks QFX3500, QFX3600, QFX5100, QFX5200, EX4300 and EX4600 devices running Junos OS 14.1X53 prior to 14.1X53-D40, 15.1X53 prior to 15.1X53-D40, 15.1 prior to 15.1R2, do not pad Ethernet packets with zeros, and thus some packets can contain fragments of system memory or data from previous packets. This issue is also known as 'Etherleak'

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.5%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2017-2304

Juniper » Ex4300 » Version: N/A

cpe:2.3:h:juniper:ex4300:-
Juniper » Ex4600 » Version: N/A

cpe:2.3:h:juniper:ex4600:-
Juniper » Qfx3500 » Version: N/A

cpe:2.3:h:juniper:qfx3500:-
Juniper » Qfx3600 » Version: N/A

cpe:2.3:h:juniper:qfx3600:-
Juniper » Qfx5100 » Version: N/A

cpe:2.3:h:juniper:qfx5100:-
Juniper » Qfx5200 » Version: N/A

cpe:2.3:h:juniper:qfx5200:-
Juniper » Junos » Version: 14.1x53

cpe:2.3:o:juniper:junos:14.1x53
Juniper » Junos » Version: 15.1

cpe:2.3:o:juniper:junos:15.1
Juniper » Junos » Version: 15.1x53

cpe:2.3:o:juniper:junos:15.1x53

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-2304

Products

Pricing

Contact Us