CVE-2014-2714

EPSS 0.72%
Published 14.04.2014 15:09:06
Last modified 12.04.2025 10:46:40
Source cve@mitre.org
Teams watchlist Login
Open Login

The Enhanced Web Filtering (EWF) in Juniper Junos before 10.4R15, 11.4 before 11.4R9, 12.1 before 12.1R7, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D10, and 12.1X46 before 12.1X46-D10, as used in the SRX Series services gateways, allows remote attackers to cause a denial of service (flow daemon crash and restart) via a crafted URL.

Affected products Warnungen 0 Metrics 2 CWE 1 References 7

Data is provided by the National Vulnerability Database (NVD)

Juniper ≫ Junos Version10.4

Juniper ≫ Junos Version11.4

Juniper ≫ Junos Version12.1

Juniper ≫ Junos Version12.1x44

Juniper ≫ Junos Version12.1x45

Juniper ≫ Junos Version12.1x46

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.72%	0.717

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.1	8.6	6.9	AV:N/AC:M/Au:N/C:N/I:N/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10622

Vendor Advisory

http://secunia.com/advisories/57835

Vendor Advisory

http://securitytracker.com/id?1030060

http://www.securityfocus.com/bid/66760

https://nvd.nist.gov/vuln/detail/CVE-2014-2714

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-2714

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-2714

EUVD