Lucene search

[email protected]CVE-2014-3817

HistoryJul 11, 2014 - 8:55 p.m.

CVE-2014-3817

2014-07-1120:55:02

CWE-20

[email protected]

web.nvd.nist.gov

cve-2014-3817

juniper

junos

denial of service

nat

ipv4

ipv6

security vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.4%

JSON

Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet.

Affected configurations

NVD

Node

juniperjunosMatch11.4

juniperjunosMatch12.1x44

juniperjunosMatch12.1x45

juniperjunosMatch12.1x46

juniperjunosMatch12.1x47

AND

junipersrx100Match-

junipersrx110Match-

junipersrx1400Match-

junipersrx210Match-

junipersrx220Match-

junipersrx240Match-

junipersrx3400Match-

junipersrx3600Match-

junipersrx550Match-

junipersrx5600Match-

junipersrx5800Match-

junipersrx650Match-

CPENameOperatorVersion
juniper:junosjuniper junoseq11.4
juniper:junosjuniper junoseq12.1x44
juniper:junosjuniper junoseq12.1x45
juniper:junosjuniper junoseq12.1x46
juniper:junosjuniper junoseq12.1x47
juniper:srx100juniper srx100eq-
juniper:srx110juniper srx110eq-
juniper:srx1400juniper srx1400eq-
juniper:srx210juniper srx210eq-
juniper:srx220juniper srx220eq-

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	11.4
juniper:junos	juniper junos	eq	12.1x44
juniper:junos	juniper junos	eq	12.1x45
juniper:junos	juniper junos	eq	12.1x46
juniper:junos	juniper junos	eq	12.1x47
juniper:srx100	juniper srx100	eq	-
juniper:srx110	juniper srx110	eq	-
juniper:srx1400	juniper srx1400	eq	-
juniper:srx210	juniper srx210	eq	-
juniper:srx220	juniper srx220	eq	-