fkie_nvd - fkie_cve-2014-6386

fkie_cve-2014-6386

Vulnerability from fkie_nvd

Published

2015-01-16 16:59

Modified

2025-04-12 10:46

Severity ?

Summary

Juniper Junos 11.4 before 11.4R8, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, 12.1X47 before 12.1X47-D10, 12.2 before 12.2R9, 12.3R2 before 12.3R2-S3, 12.3 before 12.3R3, 13.1 before 13.1R4, and 13.2 before 13.2R1 allows remote attackers to cause a denial of service (assertion failure and rpd restart) via a crafted BGP FlowSpec prefix.

References

URL	Tags
cve@mitre.org	http://www.securityfocus.com/bid/72067
cve@mitre.org	http://www.securitytracker.com/id/1031548
cve@mitre.org	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10670	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/72067
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1031548
af854a3a-2127-422b-91ae-364da2661108	https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10670	Vendor Advisory

Impacted products

Vendor	Product	Version
juniper	junos	11.4
juniper	junos	11.4
juniper	junos	11.4
juniper	junos	11.4
juniper	junos	11.4
juniper	junos	11.4
juniper	junos	11.4
juniper	junos	12.1x44
juniper	junos	12.1x44
juniper	junos	12.1x44
juniper	junos	12.1x44
juniper	junos	12.1x44
juniper	junos	12.1x44
juniper	junos	12.1x45
juniper	junos	12.1x45
juniper	junos	12.1x45
juniper	junos	12.1x45
juniper	junos	12.1x46
juniper	junos	12.1x46
juniper	junos	12.1x46
juniper	junos	12.1x47
juniper	junos	12.2
juniper	junos	12.2
juniper	junos	12.2
juniper	junos	12.2
juniper	junos	12.2
juniper	junos	12.2
juniper	junos	12.2
juniper	junos	12.2
juniper	junos	12.2
juniper	junos	12.3
juniper	junos	12.3
juniper	junos	12.3
juniper	junos	13.1
juniper	junos	13.1
juniper	junos	13.1
juniper	junos	13.1
juniper	junos	13.2

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:juniper:junos:11.4:r1:*:*:*:*:*:*",
              "matchCriteriaId": "926EDB84-E8C5-4030-8B69-CDA9BF1A9D94",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:11.4:r2:*:*:*:*:*:*",
              "matchCriteriaId": "BAD7336D-EAAC-4817-9D3A-5664B0AAE6AF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:11.4:r3:*:*:*:*:*:*",
              "matchCriteriaId": "BC336F14-5D8D-4B28-8F47-2A5EFFC7800C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:11.4:r4:*:*:*:*:*:*",
              "matchCriteriaId": "C47F92DD-59C4-4C86-9360-86E840243123",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:11.4:r5:*:*:*:*:*:*",
              "matchCriteriaId": "DE6B95FB-F936-430A-B715-7430327E1872",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:11.4:r6:*:*:*:*:*:*",
              "matchCriteriaId": "D4A8F07B-110F-4FE4-BA09-F23A4D1DCA5B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:11.4:r7:*:*:*:*:*:*",
              "matchCriteriaId": "78A3616E-9666-4D09-9ED7-EFD796E6E08E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x44:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B307477-C5F2-4D98-AF4C-640D326164C7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x44:d10:*:*:*:*:*:*",
              "matchCriteriaId": "AC405A12-112D-4C9D-90DA-6ED484109793",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x44:d15:*:*:*:*:*:*",
              "matchCriteriaId": "3FC42F2D-7593-4DBE-AE89-A6B78E7F9089",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x44:d20:*:*:*:*:*:*",
              "matchCriteriaId": "731A6469-3DE0-491A-BCC5-7642FB347ACE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x44:d25:*:*:*:*:*:*",
              "matchCriteriaId": "D12A8119-3E59-4062-9A04-1F6EA48B78E9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x44:d30:*:*:*:*:*:*",
              "matchCriteriaId": "E8B33B80-3189-4412-BFE0-359E755AB07A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x45:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E747970-4C27-4B46-9163-964252CB98F6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x45:d10:*:*:*:*:*:*",
              "matchCriteriaId": "A5306185-574A-43B4-8B3B-1B047CA36D66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x45:d15:*:*:*:*:*:*",
              "matchCriteriaId": "79F1F205-A4A9-4161-B6CF-55CEEFD7D8D9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x45:d20:*:*:*:*:*:*",
              "matchCriteriaId": "33FD6DB0-F995-4A22-A97F-6276AFE9EFB4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*",
              "matchCriteriaId": "CFB89F64-16BB-4A14-9084-B338668D7FF1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:*",
              "matchCriteriaId": "A71742CF-50B1-44BB-AB7B-27E5DCC9CF70",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:*",
              "matchCriteriaId": "4FD4237A-C257-4D8A-ABC4-9B2160530A4E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.1x47:*:*:*:*:*:*:*",
              "matchCriteriaId": "0BB3DE56-1B04-4A53-B4A4-93286FC98463",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FB9541A-2570-459A-87D6-5341C67B8EC8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.2:r1:*:*:*:*:*:*",
              "matchCriteriaId": "43B661F8-1F43-4073-9275-AE1FFCB17BF8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.2:r2:*:*:*:*:*:*",
              "matchCriteriaId": "EF88921E-18E4-49B2-AAF4-ED8C393D4750",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.2:r3:*:*:*:*:*:*",
              "matchCriteriaId": "144DA08B-A129-4DC6-81D2-782BD7C3074B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.2:r4:*:*:*:*:*:*",
              "matchCriteriaId": "F1936A41-302E-4546-9F7A-CAE3A3C68718",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.2:r5:*:*:*:*:*:*",
              "matchCriteriaId": "6EB55673-5857-452F-9D22-B422CC9CC3F3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.2:r6:*:*:*:*:*:*",
              "matchCriteriaId": "03D4519D-1289-47E9-BFB7-E3831BFD50F6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.2:r7:*:*:*:*:*:*",
              "matchCriteriaId": "77CDB10F-3BCE-41AF-B633-DFAC9B8A5D9F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.2:r8:*:*:*:*:*:*",
              "matchCriteriaId": "B795A4AD-38A1-470B-86B2-872011C80DB3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E014A0D-0054-4EBA-BA1F-035B74BD822F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.3:r1:*:*:*:*:*:*",
              "matchCriteriaId": "371A7DF8-3F4B-439D-8990-D1BC6F0C25C5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:12.3:r2:*:*:*:*:*:*",
              "matchCriteriaId": "7CC3BCFD-2B0F-4994-9FE4-9D37FA85F1E2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:13.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "71FB12AC-DB5A-444A-81E0-C0DDD06810EB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:13.1:r1:*:*:*:*:*:*",
              "matchCriteriaId": "FCD4D8EB-8625-47CD-8F0E-D2FC8CAA5462",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:13.1:r2:*:*:*:*:*:*",
              "matchCriteriaId": "A0150A4C-2C5A-49FC-8FB3-B93CB45B8284",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:13.1:r3:*:*:*:*:*:*",
              "matchCriteriaId": "BFEB7A59-7536-4A92-A9C8-79FDE657B8AB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:13.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "CAB7D840-9469-4CE2-8DBF-017A44741374",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Juniper Junos 11.4 before 11.4R8, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, 12.1X47 before 12.1X47-D10, 12.2 before 12.2R9, 12.3R2 before 12.3R2-S3, 12.3 before 12.3R3, 13.1 before 13.1R4, and 13.2 before 13.2R1 allows remote attackers to cause a denial of service (assertion failure and rpd restart) via a crafted BGP FlowSpec prefix."
    },
    {
      "lang": "es",
      "value": "Juniper Junos 11.4 anterior a 11.4R8, 12.1X44 anterior a 12.1X44-D35, 12.1X45 anterior a 12.1X45-D25, 12.1X46 anterior a 12.1X46-D20, 12.1X47 anterior a 12.1X47-D10, 12.2 anterior a 12.2R9, 12.3R2 anterior a 12.3R2-S3, 12.3 anterior a 12.3R3, 13.1 anterior a 13.1R4, y 13.2 anterior a 13.2R1 permite a atacantes remotos causar una denegaci\u00f3n de servicio (fallo de aserci\u00f3n y reinicio de rpd) a trav\u00e9s de un prefijo BGP FlowSpec manipulado."
    }
  ],
  "id": "CVE-2014-6386",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2015-01-16T16:59:07.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/72067"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id/1031548"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10670"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/72067"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1031548"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10670"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-17"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2014-6386 (GCVE-0-2014-6386)

Vulnerability from cvelistv5

Published

2015-01-16 16:00