7.8

CVE-2014-6380

Exploit

EPSS 0.91%
Veröffentlicht 14.10.2014 14:55:06
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Juniper Junos 11.4 before R11, 12.1 before R9, 12.1X44 before D30, 12.1X45 before D20, 12.1X46 before D15, 12.1X47 before D10, 12.2 before R8, 12.2X50 before D70, 12.3 before R6, 13.1 before R4, 13.1X49 before D55, 13.1X50 before D30, 13.2 before R4, 13.2X50 before D20, 13.2X51 before D15, 13.2X52 before D15, 13.3 before R1, when using an em interface to connect to a certain internal network, allows remote attackers to cause a denial of service (em driver bock and FPC reset or "go offline") via a series of crafted (1) CLNP fragmented packets, when clns-routing or ESIS is configured, or (2) IPv4 or (3) IPv6 fragmented packets.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Juniper ≫ Junos Version11.4

Juniper ≫ Junos Version12.1

Juniper ≫ Junos Version12.1r

Juniper ≫ Junos Version12.1x44

Juniper ≫ Junos Version12.1x45

Juniper ≫ Junos Version12.1x46

Juniper ≫ Junos Version12.1x47

Juniper ≫ Junos Version12.2

Juniper ≫ Junos Version12.2x50

Juniper ≫ Junos Version12.3

Juniper ≫ Junos Version13.1

Juniper ≫ Junos Version13.1x49

Juniper ≫ Junos Version13.1x50

Juniper ≫ Junos Version13.2

Juniper ≫ Junos Version13.2x50

Juniper ≫ Junos Version13.2x51

Juniper ≫ Junos Version13.2x52

Juniper ≫ Junos Version13.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.91%	0.736

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

http://www.securityfocus.com/bid/70369

http://www.securitytracker.com/id/1031011

https://exchange.xforce.ibmcloud.com/vulnerabilities/96904

https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10655

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2014-6380

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-6380

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-6380

EUVD