CVE-2014-3815

EPSS 0.69%
Published 11.07.2014 20:55:02
Last modified 12.04.2025 10:46:40
Source cve@mitre.org
Teams watchlist Login
Open Login

Juniper Junos 12.1X46 before 12.1X46-D20 and 12.1X47 before 12.1X47-D10 on SRX Series devices allows remote attackers to cause a denial of service (flowd crash) via a crafted SIP packet.

Affected products Warnungen 0 Metrics 2 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Juniper ≫ Junos Version12.1x46

Juniper ≫ Junos Version12.1x47

Juniper ≫ Srx100 Version-

Juniper ≫ Srx110 Version-

Juniper ≫ Srx1400 Version-

Juniper ≫ Srx210 Version-

Juniper ≫ Srx220 Version-

Juniper ≫ Srx240 Version-

Juniper ≫ Srx3400 Version-

Juniper ≫ Srx3600 Version-

Juniper ≫ Srx550 Version-

Juniper ≫ Srx5600 Version-

Juniper ≫ Srx5800 Version-

Juniper ≫ Srx650 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.69%	0.695

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.securityfocus.com/bid/68551

http://www.securitytracker.com/id/1030557

https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10633

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2014-3815

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-3815

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-3815

EUVD