CVE-2017-2340 — Improper Input Validation in Networks Junos OS ON M MX Platforms Where Enhanced Subscriber Management FOR Dhcpv6 Subsc

CWE-20 — Improper Input Validation3 documents3 sources

Severity

5.3MEDIUMNVD

EPSS

0.4%

top 38.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS ON M MX Platforms Where Enhanced Subscriber Management FOR Dhcpv6 Subsc Juniper Junos Juniper Junos OS +1 more

Timeline

PublishedApr 24

Latest updateMay 17

Description

On Juniper Networks Junos OS 15.1 releases from 15.1R3 to 15.1R4, 16.1 prior to 16.1R3, on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured, a vulnerability in processing IPv6 ND packets originating from subscribers and destined to M/MX series routers can result in a PFE (Packet Forwarding Engine) hang or crash.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages4 packages

▶CVEListV5juniper_networks/junos_os_on_m_mx_platforms_where_enhanced_subscriber_management_for_dhcpv6_subsc4 versions+3

▶NVDjuniper/junos15.1, 16.1+1

▶juniperjuniper/junos_os

▶juniperjuniper/mx_series

🔴Vulnerability Details

GHSA

GHSA-52f2-j43x-hh76: On Juniper Networks Junos OS 15↗2022-05-17

▶

📋Vendor Advisories

Juniper

CVE-2017-2340: On Juniper Networks Junos OS 15.1 releases from 15.1R3 to 15.1R4, 16.1 prior to 16.1R3, on M/MX platforms where Enhanced Subscriber Management for DHC↗2017-04-24

▶