CVE-2017-10610
SRX Series: Embedded ICMP may cause the flowd process to crash
Severity Score
5.9
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
On SRX Series devices, a crafted ICMP packet embedded within a NAT64 IPv6 to IPv4 tunnel may cause the flowd process to crash. Repeated crashes of the flowd process constitutes an extended denial of service condition for the SRX Series device. This issue only occurs if NAT64 is configured. Affected releases are Juniper Networks Junos OS 12.1X46 prior to 12.1X46-D71, 12.3X48 prior to 12.3X48-D55, 15.1X49 prior to 15.1X49-D100 on SRX Series. No other Juniper Networks products or platforms are affected by this issue.
En dispositivos de la serie SRX, un paquete ICMP manipulado embebido en un túnel NAT64 IPv6 a IPv4 puede provocar que el proceso flowd se cierre de manera inesperada. El cierre inesperado repetido del proceso flowd constituye una condición de denegación de servicio extendida para los dispositivos de la serie SRX. Este problema solo ocurre si NAT64 está configurado. Las distribuciones afectadas son: Juniper Networks Junos OS 12.1X46 anteriores a 12.1X46-D71, 12.3X48 anteriores a 12.3X48-D55, 15.1X49 anteriores a 15.1X49-D100 en SRX Series. No hay ningún otro producto o plataforma de Juniper Networks que se vea afectado por este problema.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2017-06-28 CVE Reserved
- 2017-10-13 CVE Published
- 2023-08-23 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (2)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://kb.juniper.net/JSA10813 | 2019-10-09 | |
| https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/nat-stateful-nat64-configuring.html | 2019-10-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d10 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d15 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d20 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d25 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d30 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d35 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d40 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d45 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d50 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.1x46 Search vendor "Juniper" for product "Junos" and version "12.1x46" | d55 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.3x48 Search vendor "Juniper" for product "Junos" and version "12.3x48" | d10 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.3x48 Search vendor "Juniper" for product "Junos" and version "12.3x48" | d15 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.3x48 Search vendor "Juniper" for product "Junos" and version "12.3x48" | d20 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.3x48 Search vendor "Juniper" for product "Junos" and version "12.3x48" | d25 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.3x48 Search vendor "Juniper" for product "Junos" and version "12.3x48" | d30 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.3x48 Search vendor "Juniper" for product "Junos" and version "12.3x48" | d35 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.3x48 Search vendor "Juniper" for product "Junos" and version "12.3x48" | d40 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.3x48 Search vendor "Juniper" for product "Junos" and version "12.3x48" | d45 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 12.3x48 Search vendor "Juniper" for product "Junos" and version "12.3x48" | d50 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d10 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d20 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d30 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d35 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d40 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d45 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d50 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d55 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d60 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d65 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d70 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d75 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d80 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | 15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49" | d90 |
Affected
| in | Juniper Search vendor "Juniper" | Srx Series Search vendor "Juniper" for product "Srx Series" | - | - |
Safe
|