Lucene search

[email protected]CVE-2014-3815

HistoryJul 11, 2014 - 8:55 p.m.

CVE-2014-3815

2014-07-1120:55:02

CWE-20

[email protected]

web.nvd.nist.gov

cve-2014-3815

juniper

junos

srx series

denial of service

flowd crash

sip packet

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.7%

JSON

Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet.

Affected configurations

NVD

Node

juniperjunosMatch12.1x46

juniperjunosMatch12.1x47

AND

junipersrx100Match-

junipersrx110Match-

junipersrx1400Match-

junipersrx210Match-

junipersrx220Match-

junipersrx240Match-

junipersrx3400Match-

junipersrx3600Match-

junipersrx550Match-

junipersrx5600Match-

junipersrx5800Match-

junipersrx650Match-

CPENameOperatorVersion
juniper:junosjuniper junoseq12.1x46
juniper:junosjuniper junoseq12.1x47
juniper:srx100juniper srx100eq-
juniper:srx110juniper srx110eq-
juniper:srx1400juniper srx1400eq-
juniper:srx210juniper srx210eq-
juniper:srx220juniper srx220eq-
juniper:srx240juniper srx240eq-
juniper:srx3400juniper srx3400eq-
juniper:srx3600juniper srx3600eq-

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	12.1x46
juniper:junos	juniper junos	eq	12.1x47
juniper:srx100	juniper srx100	eq	-
juniper:srx110	juniper srx110	eq	-
juniper:srx1400	juniper srx1400	eq	-
juniper:srx210	juniper srx210	eq	-
juniper:srx220	juniper srx220	eq	-
juniper:srx240	juniper srx240	eq	-
juniper:srx3400	juniper srx3400	eq	-
juniper:srx3600	juniper srx3600	eq	-