CVE-2014-0613 — Juniper Junos vulnerability

3 documents3 sources

Severity

7.1HIGHNVD

EPSS

0.6%

top 29.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Junos Juniper Junos OS

Timeline

PublishedJan 15

Latest updateMay 17

Description

The XNM command processor in Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before 12.1R8-S2, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, 12.1X46 before 12.1X46-D10, 12.2 before 12.2R7, 12.3 before 12.3R5, 13.1 before 13.1R3-S1, 13.2 before 13.2R2-S2, and 13.3 before 13.3R1, when xnm-ssl or xnm-clear-text is enabled, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages2 packages

▶NVDjuniper/junos11 versions+10

▶juniperjuniper/junos_os

🔴Vulnerability Details

GHSA

GHSA-p968-w84q-6wjw: The XNM command processor in Juniper Junos 10↗2022-05-17

▶

📋Vendor Advisories

Juniper

CVE-2014-0613: The XNM command processor in Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before 12.1R8-S2, 12.1X44 before 12.1X44-D30, 12.1X45 befor↗2014-01-15

▶