CVE-2014-3825 — Vulnetix

CVE-2014-3825 PUBLISHED CVSS 6.800000190734863 MEDIUM

The Juniper SRX Series devices with Junos 11.4 before 11.4R12-S4, 12.1X44 before 12.1X44-D40, 12.1X45 before 12.1X45-D30, 12.1X46 before 12.1X46-D25, and 12.1X47 before 12.1X47-D10, when an Application Layer Gateway (ALG) is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted packet.

EPSS 0.77% · 73.9th percentile

Risk Scores

CVSS 2.0

6.800000190734863

EPSS Score

0.77%

73.9th percentile

Affected Products

Vendor	Product	Versions
juniper	junos	12.1x45, 12.1, 12.1x44
juniper	srx240
juniper	srx210
juniper	srx550
n/a	n/a	n/a
juniper	srx650
juniper	srx100
juniper	srx3400
juniper	srx220
juniper	srx110
juniper	srx1400
juniper	srx3600
juniper	srx5600
juniper	srx5800

Exploit Intelligence

uthrasri/G2.5_openssl_CVE-2014-5139 (github-poc)
uthrasri/G2.5_openssl_CVE-2014-5139 (github-poc)
uthrasri/G2.5_openssl_CVE-2014-5139 (github-poc)
uthrasri/G2.5_openssl_CVE-2014-5139 (github-poc)
uthrasri/CVE-2014-5139 (github-poc)
uthrasri/CVE-2014-5139 (github-poc)
uthrasri/CVE-2014-5139 (github-poc)
uthrasri/CVE-2014-5139 (github-poc)
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10650 (circl)
1031007 (circl)

Timeline

Oct 9, 2014 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 2, 2023 EPSS Score
May 25, 2023 EPSS Score

References

Open in Interactive Console →