CVE-2014-6378

Severity Score

7.8

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Juniper Junos 11.4 before R12-S4, 12.1X44 before D35, 12.1X45 before D30, 12.1X46 before D25, 12.1X47 before D10, 12.2 before R9, 12.2X50 before D70, 12.3 before R7, 13.1 before R4 before S3, 13.1X49 before D55, 13.1X50 before D30, 13.2 before R5, 13.2X50 before D20, 13.2X51 before D26 and D30, 13.2X52 before D15, 13.3 before R3, and 14.1 before R1 allows remote attackers to cause a denial of service (router protocol daemon crash) via a crafted RSVP PATH message.

Juniper Junos 11.4 anhterior a R12-S4, 12.1X44 anterior a D35, 12.1X45 anterior a D30, 12.1X46 anterior a D25, 12.1X47 anterior a D10, 12.2 anterior a R9, 12.2X50 anterior a D70, 12.3 anterior a R7, 13.1 anterior a R4 anterior a S3, 13.1X49 anterior a D55, 13.1X50 anterior a D30, 13.2 anterior a R5, 13.2X50 anterior a D20, 13.2X51 anterior a D26 y D30, 13.2X52 anterior a D15, 13.3 anterior a R3, y 14.1 anterior a R1 permite a atacantes remotos causar una denegación de servicio (caída del demonio del protocolo del router) a través de un mensaje RSVP PATH manipulado.

*Credits: N/A

CVSS Scores

NISTv2 7.8

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2014-09-11 CVE Reserved
2014-10-14 CVE Published
2023-03-07 EPSS Updated
2024-08-06 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-399: Resource Management Errors

CAPEC

References (4)

URL	Tag	Source
http://www.securityfocus.com/bid/70363	Vdb Entry
http://www.securitytracker.com/id/1031008	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/96906	Vdb Entry

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10652	2017-09-08

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				11.4 Search vendor "Juniper" for product "Junos" and version "11.4"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				11.4 Search vendor "Juniper" for product "Junos" and version "11.4"		r12		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				12.1x44 Search vendor "Juniper" for product "Junos" and version "12.1x44"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				12.1x45 Search vendor "Juniper" for product "Junos" and version "12.1x45"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46"		d20		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				12.1x47 Search vendor "Juniper" for product "Junos" and version "12.1x47"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				12.2 Search vendor "Juniper" for product "Junos" and version "12.2"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				12.2 Search vendor "Juniper" for product "Junos" and version "12.2"		r8-s2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				12.2x50 Search vendor "Juniper" for product "Junos" and version "12.2x50"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				12.3 Search vendor "Juniper" for product "Junos" and version "12.3"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.1 Search vendor "Juniper" for product "Junos" and version "13.1"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.1 Search vendor "Juniper" for product "Junos" and version "13.1"		r4-s2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.1x49 Search vendor "Juniper" for product "Junos" and version "13.1x49"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.1x50 Search vendor "Juniper" for product "Junos" and version "13.1x50"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.2 Search vendor "Juniper" for product "Junos" and version "13.2"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.2x50 Search vendor "Juniper" for product "Junos" and version "13.2x50"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.2x51 Search vendor "Juniper" for product "Junos" and version "13.2x51"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.2x52 Search vendor "Juniper" for product "Junos" and version "13.2x52"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.3 Search vendor "Juniper" for product "Junos" and version "13.3"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				13.3 Search vendor "Juniper" for product "Junos" and version "13.3"		r2-s2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				14.1 Search vendor "Juniper" for product "Junos" and version "14.1"		-		Affected