CVE-2017-10613 — Uncontrolled Resource Consumption in Networks Junos OS

CWE-400 — Uncontrolled Resource Consumption3 documents3 sources

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 86.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Juniper Junos Juniper Junos OS

Timeline

PublishedOct 13

Latest updateMay 13

Description

A vulnerability in a specific loopback filter action command, processed in a specific logical order of operation, in a running configuration of Juniper Networks Junos OS, allows an attacker with CLI access and the ability to initiate remote sessions to the loopback interface with the defined action, to hang the kernel. Affected releases are Juniper Networks Junos OS 12.1X46 prior to 12.1X46-D55; 12.3X48 prior to 12.3X48-D35; 14.1 prior to 14.1R8-S4, 14.1R9; 14.1X53 prior to 14.1X53-D40; 14.2 pri…

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶CVEListV5juniper_networks/junos_os9 versions+8

▶NVDjuniper/junos9 versions+8

▶juniperjuniper/junos_os

🔴Vulnerability Details

GHSA

GHSA-f8w4-v283-r8w8: A vulnerability in a specific loopback filter action command, processed in a specific logical order of operation, in a running configuration of Junipe↗2022-05-13

▶

📋Vendor Advisories

Juniper

CVE-2017-10613: A vulnerability in a specific loopback filter action command, processed in a specific logical order of operation, in a running configuration of Junipe↗2017-10-13

▶