Juniper Networks Junos OS における入力確認に関する脆弱性
| Title |
Juniper Networks Junos OS における入力確認に関する脆弱性
|
| Summary |
Juniper Networks Junos OS には、入力確認に関する脆弱性が存在します。
|
| Possible impacts |
サービス運用妨害 (DoS) 状態にされる可能性があります。 |
| Solution |
ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。 |
| Publication Date |
April 11, 2018, midnight |
| Registration Date |
June 18, 2018, 12:12 p.m. |
| Last Update |
June 18, 2018, 12:12 p.m. |
|
CVSS3.0 : 警告
|
| Score |
6.5
|
| Vector |
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
|
CVSS2.0 : 警告
|
| Score |
6.8
|
| Vector |
AV:N/AC:L/Au:S/C:N/I:N/A:C |
Affected System
| ジュニパーネットワークス |
|
Junos OS 12.1X46-D72 未満の 12.1X46
|
|
Junos OS 12.3X48-D55 未満の 12.3X48
|
|
Junos OS 15.1X49-D90 未満の 15.1X49
|
CVE (情報セキュリティ 共通脆弱性識別子)
CWE (共通脆弱性タイプ一覧)
ベンダー情報
Change Log
| No |
Changed Details |
Date of change |
| 1 |
[2018年06月18日]
掲載 |
June 18, 2018, 12:12 p.m. |
NVD Vulnerability Information
CVE-2018-0017
| Summary |
A vulnerability in the Network Address Translation - Protocol Translation (NAT-PT) feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition for the SRX device. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D72; 12.3X48 versions prior to 12.3X48-D55; 15.1X49 versions prior to 15.1X49-D90.
|
| Publication Date |
April 12, 2018, 4:29 a.m. |
| Registration Date |
March 1, 2021, 6:35 p.m. |
| Last Update |
Nov. 21, 2024, 12:37 p.m. |
Affected software configurations
| Configuration1 |
or higher |
or less |
more than |
less than |
| cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:* |
12.1x46 |
12.1x46\:d72 |
|
|
| cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:* |
12.3x48 |
12.3x48\:d55 |
|
|
| cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:* |
15.1x49 |
15.1x49\:d90 |
|
|
Related information, measures and tools
Common Vulnerabilities List