CVE-2013-4684 — Vulnetix

CVE-2013-4684 PUBLISHED CVSS 7.800000190734863 HIGH

flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R8, 12.1 before 12.1R7, and 12.1X44 before 12.1X44-D15 on SRX devices, when PIM and NAT are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted PIM packets, aka PR 842253.

EPSS 0.84% · 75.0th percentile

Risk Scores

CVSS 2.0

7.800000190734863

EPSS Score

0.84%

75.0th percentile

Affected Products

Vendor	Product	Versions
juniper	srx1400
juniper	srx5800
juniper	srx220
n/a	n/a	n/a
juniper	srx650
juniper	srx100
juniper	srx5600
juniper	srx240
juniper	srx550
juniper	srx210
juniper	srx3400
juniper	srx110
juniper	junos	12.1x44, 10.4, 12.1
juniper	srx3600

Exploit Intelligence

Timeline

Jul 11, 2013 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 17, 2022 CVE Updated
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Apr 2, 2023 EPSS Score
May 25, 2023 EPSS Score

References

https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10578 advisory
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10573 advisory
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10576 advisory
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10579 advisory
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10574 advisory
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10575 advisory
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10580 advisory
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10577 advisory
61127 vdb
54157 third-party-advisory
http://kb.juniper.net/JSA10573 url
95107 vdb
https://nvd.nist.gov/vuln/detail/CVE-2013-4684 advisory

Open in Interactive Console →