CVE-2016-1260 — Juniper Junos vulnerability

CWE-3993 documents3 sources

Severity

5.3MEDIUMNVD

EPSS

0.5%

top 34.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Junos Juniper Junos OS

Timeline

PublishedJan 15

Latest updateMay 17

Description

Juniper Junos OS before 13.2X51-D36, 14.1X53 before 14.1X53-D25, and 15.2 before 15.2R1 on EX4300 series switches allow remote attackers to cause a denial of service (network loop and bandwidth consumption) via unspecified vectors related to Spanning Tree Protocol (STP) traffic.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

▶NVDjuniper/junos13.2x51, 14.1x53, 15.2+2

▶juniperjuniper/junos_os

🔴Vulnerability Details

GHSA

GHSA-p5gw-f2xp-fjpf: Juniper Junos OS before 13↗2022-05-17

▶

📋Vendor Advisories

Juniper

CVE-2016-1260: Juniper Junos OS before 13.2X51-D36, 14.1X53 before 14.1X53-D25, and 15.2 before 15.2R1 on EX4300 series switches allow remote attackers to cause a de↗2016-01-15

▶