CVE-2014-3818 — Vulnetix

CVE-2014-3818 PUBLISHED CVSS 7.800000190734863 HIGH

Juniper Junos OS 9.1 through 11.4 before 11.4R11, 12.1 before R10, 12.1X44 before D40, 12.1X46 before D30, 12.1X47 before D11 and 12.147-D15, 12.1X48 before D41 and D62, 12.2 before R8, 12.2X50 before D70, 12.3 before R6, 13.1 before R4-S2, 13.1X49 before D49, 13.1X50 before 30, 13.2 before R4, 13.2X50 before D20, 13.2X51 before D25, 13.2X52 before D15, 13.3 before R2, and 14.1 before R1, when supporting 4-byte AS numbers and a BGP peer does not, allows remote attackers to cause a denial of service (memory corruption and RDP routing process crash and restart) via crafted transitive attributes in a BGP UPDATE.

EPSS 0.49% · 66.0th percentile

Risk Scores

CVSS 2.0

7.800000190734863

EPSS Score

0.49%

66.0th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
juniper	junos	9.2, 9.5, 10.0

Exploit Intelligence

uthrasri/G2.5_openssl_CVE-2014-5139 (github-poc)
uthrasri/G2.5_openssl_CVE-2014-5139 (github-poc)
uthrasri/G2.5_openssl_CVE-2014-5139 (github-poc)
uthrasri/G2.5_openssl_CVE-2014-5139 (github-poc)
uthrasri/CVE-2014-5139 (github-poc)
uthrasri/CVE-2014-5139 (github-poc)
uthrasri/CVE-2014-5139 (github-poc)
uthrasri/CVE-2014-5139 (github-poc)
1031009 (circl)
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10653 (circl)

Timeline

Oct 9, 2014 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 2, 2023 EPSS Score
May 25, 2023 EPSS Score

References

Open in Interactive Console →