Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for Junos OS with BGP enabled by Juniper Networks

    CVE-2017-2313 (GCVE-0-2017-2313)

    Vulnerability from nvd – Published: 2017-04-24 15:00 – Updated: 2024-08-05 13:48
    VLAI
    Summary
    Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd (routing process daemon) crash and restart. Repeated crashes of the rpd daemon can result in an extended denial of service condition. The affected Junos OS versions are: 15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6; 15.1X49 prior to 15.1X49-D78, 15.1X49-D80; 15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70; 16.1 prior to 16.1R3-S3, 16.1R4; 16.2 prior to 16.2R1-S3, 16.2R2; Releases prior to Junos OS 15.1 are unaffected by this vulnerability. 17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability.
    Severity
    No CVSS data available.
    CWE
    • denial of service vulnerability
    Assigner
    References
    URL Tags
    https://kb.juniper.net/JSA10778 x_refsource_CONFIRM
    http://www.securitytracker.com/id/1038257 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/97606 vdb-entryx_refsource_BID
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS with BGP enabled Affected: 15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6
    Affected: 15.1X49 prior to 15.1X49-D78, 15.1X49-D80
    Affected: 15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70
    Affected: 16.1 prior to 16.1R3-S3, 16.1R4
    Affected: 16.2 prior to 16.2R1-S3, 16.2R2
    Affected: Releases prior to Junos OS 15.1 are unaffected by this vulnerability.
    Affected: 17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability
    Create a notification for this product.
    Date Public
    2017-04-12 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T13:48:05.294Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/JSA10778"
              },
              {
                "name": "1038257",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1038257"
              },
              {
                "name": "97606",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97606"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Junos OS with BGP enabled",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "status": "affected",
                  "version": "15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6"
                },
                {
                  "status": "affected",
                  "version": "15.1X49 prior to 15.1X49-D78, 15.1X49-D80"
                },
                {
                  "status": "affected",
                  "version": "15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70"
                },
                {
                  "status": "affected",
                  "version": "16.1 prior to 16.1R3-S3, 16.1R4"
                },
                {
                  "status": "affected",
                  "version": "16.2 prior to 16.2R1-S3, 16.2R2"
                },
                {
                  "status": "affected",
                  "version": "Releases prior to Junos OS 15.1 are unaffected by this vulnerability."
                },
                {
                  "status": "affected",
                  "version": "17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability"
                }
              ]
            }
          ],
          "datePublic": "2017-04-12T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd (routing process daemon) crash and restart. Repeated crashes of the rpd daemon can result in an extended denial of service condition. The affected Junos OS versions are: 15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6; 15.1X49 prior to 15.1X49-D78, 15.1X49-D80; 15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70; 16.1 prior to 16.1R3-S3, 16.1R4; 16.2 prior to 16.2R1-S3, 16.2R2; Releases prior to Junos OS 15.1 are unaffected by this vulnerability. 17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "denial of service vulnerability",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T09:57:01.000Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/JSA10778"
            },
            {
              "name": "1038257",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1038257"
            },
            {
              "name": "97606",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97606"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "sirt@juniper.net",
              "ID": "CVE-2017-2313",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Junos OS with BGP enabled",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6"
                              },
                              {
                                "version_value": "15.1X49 prior to 15.1X49-D78, 15.1X49-D80"
                              },
                              {
                                "version_value": "15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70"
                              },
                              {
                                "version_value": "16.1 prior to 16.1R3-S3, 16.1R4"
                              },
                              {
                                "version_value": "16.2 prior to 16.2R1-S3, 16.2R2"
                              },
                              {
                                "version_value": "Releases prior to Junos OS 15.1 are unaffected by this vulnerability."
                              },
                              {
                                "version_value": "17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Juniper Networks"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd (routing process daemon) crash and restart. Repeated crashes of the rpd daemon can result in an extended denial of service condition. The affected Junos OS versions are: 15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6; 15.1X49 prior to 15.1X49-D78, 15.1X49-D80; 15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70; 16.1 prior to 16.1R3-S3, 16.1R4; 16.2 prior to 16.2R1-S3, 16.2R2; Releases prior to Junos OS 15.1 are unaffected by this vulnerability. 17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "denial of service vulnerability"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://kb.juniper.net/JSA10778",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/JSA10778"
                },
                {
                  "name": "1038257",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1038257"
                },
                {
                  "name": "97606",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97606"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2017-2313",
        "datePublished": "2017-04-24T15:00:00.000Z",
        "dateReserved": "2016-12-01T00:00:00.000Z",
        "dateUpdated": "2024-08-05T13:48:05.294Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2017-2313 (GCVE-0-2017-2313)

    Vulnerability from cvelistv5 – Published: 2017-04-24 15:00 – Updated: 2024-08-05 13:48
    VLAI
    Summary
    Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd (routing process daemon) crash and restart. Repeated crashes of the rpd daemon can result in an extended denial of service condition. The affected Junos OS versions are: 15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6; 15.1X49 prior to 15.1X49-D78, 15.1X49-D80; 15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70; 16.1 prior to 16.1R3-S3, 16.1R4; 16.2 prior to 16.2R1-S3, 16.2R2; Releases prior to Junos OS 15.1 are unaffected by this vulnerability. 17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability.
    Severity
    No CVSS data available.
    CWE
    • denial of service vulnerability
    Assigner
    References
    URL Tags
    https://kb.juniper.net/JSA10778 x_refsource_CONFIRM
    http://www.securitytracker.com/id/1038257 vdb-entryx_refsource_SECTRACK
    http://www.securityfocus.com/bid/97606 vdb-entryx_refsource_BID
    Impacted products
    Vendor Product Version
    Juniper Networks Junos OS with BGP enabled Affected: 15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6
    Affected: 15.1X49 prior to 15.1X49-D78, 15.1X49-D80
    Affected: 15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70
    Affected: 16.1 prior to 16.1R3-S3, 16.1R4
    Affected: 16.2 prior to 16.2R1-S3, 16.2R2
    Affected: Releases prior to Junos OS 15.1 are unaffected by this vulnerability.
    Affected: 17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability
    Create a notification for this product.
    Date Public
    2017-04-12 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-05T13:48:05.294Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://kb.juniper.net/JSA10778"
              },
              {
                "name": "1038257",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id/1038257"
              },
              {
                "name": "97606",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97606"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Junos OS with BGP enabled",
              "vendor": "Juniper Networks",
              "versions": [
                {
                  "status": "affected",
                  "version": "15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6"
                },
                {
                  "status": "affected",
                  "version": "15.1X49 prior to 15.1X49-D78, 15.1X49-D80"
                },
                {
                  "status": "affected",
                  "version": "15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70"
                },
                {
                  "status": "affected",
                  "version": "16.1 prior to 16.1R3-S3, 16.1R4"
                },
                {
                  "status": "affected",
                  "version": "16.2 prior to 16.2R1-S3, 16.2R2"
                },
                {
                  "status": "affected",
                  "version": "Releases prior to Junos OS 15.1 are unaffected by this vulnerability."
                },
                {
                  "status": "affected",
                  "version": "17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability"
                }
              ]
            }
          ],
          "datePublic": "2017-04-12T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd (routing process daemon) crash and restart. Repeated crashes of the rpd daemon can result in an extended denial of service condition. The affected Junos OS versions are: 15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6; 15.1X49 prior to 15.1X49-D78, 15.1X49-D80; 15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70; 16.1 prior to 16.1R3-S3, 16.1R4; 16.2 prior to 16.2R1-S3, 16.2R2; Releases prior to Junos OS 15.1 are unaffected by this vulnerability. 17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "denial of service vulnerability",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T09:57:01.000Z",
            "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
            "shortName": "juniper"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://kb.juniper.net/JSA10778"
            },
            {
              "name": "1038257",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id/1038257"
            },
            {
              "name": "97606",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97606"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "sirt@juniper.net",
              "ID": "CVE-2017-2313",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Junos OS with BGP enabled",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6"
                              },
                              {
                                "version_value": "15.1X49 prior to 15.1X49-D78, 15.1X49-D80"
                              },
                              {
                                "version_value": "15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70"
                              },
                              {
                                "version_value": "16.1 prior to 16.1R3-S3, 16.1R4"
                              },
                              {
                                "version_value": "16.2 prior to 16.2R1-S3, 16.2R2"
                              },
                              {
                                "version_value": "Releases prior to Junos OS 15.1 are unaffected by this vulnerability."
                              },
                              {
                                "version_value": "17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Juniper Networks"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd (routing process daemon) crash and restart. Repeated crashes of the rpd daemon can result in an extended denial of service condition. The affected Junos OS versions are: 15.1 prior to 15.1F2-S15, 15.1F5-S7, 15.1F6-S5, 15.1F7, 15.1R4-S7, 15.1R5-S2, 15.1R6; 15.1X49 prior to 15.1X49-D78, 15.1X49-D80; 15.1X53 prior to 15.1X53-D230, 15.1X53-D63, 15.1X53-D70; 16.1 prior to 16.1R3-S3, 16.1R4; 16.2 prior to 16.2R1-S3, 16.2R2; Releases prior to Junos OS 15.1 are unaffected by this vulnerability. 17.1R1, 17.2R1, and all subsequent releases have a resolution for this vulnerability."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "denial of service vulnerability"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://kb.juniper.net/JSA10778",
                  "refsource": "CONFIRM",
                  "url": "https://kb.juniper.net/JSA10778"
                },
                {
                  "name": "1038257",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id/1038257"
                },
                {
                  "name": "97606",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97606"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968",
        "assignerShortName": "juniper",
        "cveId": "CVE-2017-2313",
        "datePublished": "2017-04-24T15:00:00.000Z",
        "dateReserved": "2016-12-01T00:00:00.000Z",
        "dateUpdated": "2024-08-05T13:48:05.294Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }