Lucene search

K

[email protected]NVD:CVE-2018-0014

HistoryJan 10, 2018 - 10:29 p.m.

CVE-2018-0014

2018-01-1022:29:01

CWE-200

[email protected]

web.nvd.nist.gov

3.3 Low

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:L/Au:N/C:P/I:N/A:N

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

4.6 Medium

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

Juniper Networks ScreenOS devices do not pad Ethernet packets with zeros, and thus some packets can contain fragments of system memory or data from previous packets. This issue is often detected as CVE-2003-0001. The issue affects all versions of Juniper Networks ScreenOS prior to 6.3.0r25.

Affected configurations

NVD

Node

juniperscreenosMatch6.3.0r1

OR

juniperscreenosMatch6.3.0r2

OR

juniperscreenosMatch6.3.0r3

OR

juniperscreenosMatch6.3.0r4

OR

juniperscreenosMatch6.3.0r5

OR

juniperscreenosMatch6.3.0r6

OR

juniperscreenosMatch6.3.0r7

OR

juniperscreenosMatch6.3.0r8

OR

juniperscreenosMatch6.3.0r9

OR

juniperscreenosMatch6.3.0r10

OR

juniperscreenosMatch6.3.0r11

OR

juniperscreenosMatch6.3.0r12

OR

juniperscreenosMatch6.3.0r13

OR

juniperscreenosMatch6.3.0r14

OR

juniperscreenosMatch6.3.0r15

OR

juniperscreenosMatch6.3.0r16

OR

juniperscreenosMatch6.3.0r17

OR

juniperscreenosMatch6.3.0r18

OR

juniperscreenosMatch6.3.0r19

OR

juniperscreenosMatch6.3.0r20

OR

juniperscreenosMatch6.3.0r21

OR

juniperscreenosMatch6.3.0r22

OR

juniperscreenosMatch6.3.0r23

OR

juniperscreenosMatch6.3.0r24

OR

juniperscreenosMatch6.3.0r25

References

www.securitytracker.com/id/1040185

kb.juniper.net/JSA10841

3.3 Low

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:L/Au:N/C:P/I:N/A:N

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

4.6 Medium

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.4%

Related for NVD:CVE-2018-0014

cve5 prion4 cvelist5 nessus21 securityvulns7 exploitpack3 ubuntucve1 seebug4 nvd4 cert2 packetstorm2 exploitdb3 openvas14 paloalto1 debian9 osv6 cisa1 oracle1