CVE-2014-3817 — Vulnetix

CVE-2014-3817 PUBLISHED CVSS 7.800000190734863 HIGH

Juniper Junos 11.4 before 11.4R12, 12.1X44 before 12.1X44-D32, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 on SRX Series devices, when NAT protocol translation from IPv4 to IPv6 is enabled, allows remote attackers to cause a denial of service (flowd hang or crash) via a crafted packet.

EPSS 0.78% · 74.0th percentile

Risk Scores

CVSS v2.0

7.800000190734863

EPSS Score

0.78%

74.0th percentile

Affected Products

Vendor	Product	Versions
juniper	srx650
juniper	srx1400
juniper	srx550
juniper	srx210
juniper	srx240
n/a	n/a	n/a
juniper	junos	*, 12.1x47, 12.1x46
juniper	srx5600
juniper	srx100
juniper	srx3400
juniper	srx5800
juniper	srx3600
juniper	srx220
juniper	srx110

Timeline

Jul 10, 2014 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 17, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Apr 1, 2023 EPSS Score
May 24, 2023 EPSS Score
Jul 15, 2023 EPSS Score

References

Open in Interactive Console →