CVE-2013-4686 — Juniper Junos vulnerability

3 documents3 sources

Severity

7.1HIGHNVD

EPSS

0.6%

top 29.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Junos Juniper Junos OS

Timeline

PublishedJul 11

Latest updateMay 17

Description

The kernel in Juniper Junos 10.4 before 10.4R14, 11.4 before 11.4R8, 11.4X27 before 11.4X27.43, 12.1 before 12.1R6, 12.1X44 before 12.1X44-D20, 12.2 before 12.2R4, and 12.3 before 12.3R2, in certain VLAN configurations with unrestricted arp-resp and proxy-arp settings, allows remote attackers to cause a denial of service (device crash) via a crafted ARP request, aka PR 842091.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages2 packages

▶NVDjuniper/junos7 versions+6

▶juniperjuniper/junos_os

🔴Vulnerability Details

GHSA

GHSA-58r4-7mj9-4vhp: The kernel in Juniper Junos 10↗2022-05-17

▶

📋Vendor Advisories

Juniper

CVE-2013-4686: The kernel in Juniper Junos 10.4 before 10.4R14, 11.4 before 11.4R8, 11.4X27 before 11.4X27.43, 12.1 before 12.1R6, 12.1X44 before 12.1X44-D20, 12.2 b↗2013-07-11

▶