// For flags

CVE-2017-10621

Junos OS: Denial of service vulnerability in telnetd

Severity Score

5.3
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A denial of service vulnerability in telnetd service on Juniper Networks Junos OS allows remote unauthenticated attackers to cause a denial of service. Affected Junos OS releases are: 12.1X46 prior to 12.1X46-D71; 12.3X48 prior to 12.3X48-D50; 14.1 prior to 14.1R8-S5, 14.1R9; 14.1X53 prior to 14.1X53-D50; 14.2 prior to 14.2R7-S9, 14.2R8; 15.1 prior to 15.1F2-S16, 15.1F5-S7, 15.1F6-S6, 15.1R5-S2, 15.1R6; 15.1X49 prior to 15.1X49-D90; 15.1X53 prior to 15.1X53-D47; 16.1 prior to 16.1R4-S1, 16.1R5; 16.2 prior to 16.2R1-S3, 16.2R2;

Una vulnerabilidad de denegaciĆ³n de servicio (DoS) en el servicio telnetd en Juniper Networks Junos OS permite que atacantes remotos no autenticados provoquen una denegaciĆ³n de servicio (DoS). Las distribuciones afectadas Junos OS son: 12.1X46 anteriores a 12.1X46-D71; 12.3X48 anteriores a 12.3X48-D50; 14.1 anteriores a 14.1R8-S5, 14.1R9; 14.1X53 anteriores a 14.1X53-D50; 14.2 anteriores a 14.2R7-S9, 14.2R8; 15.1 anteriores a 15.1F2-S16, 15.1F5-S7, 15.1F6-S6, 15.1R5-S2, 15.1R6; 15.1X49 anteriores a 15.1X49-D90; 15.1X53 anteriores a 15.1X53-D47; 16.1 anteriores a 16.1R4-S1, 16.1R5; 16.2 anteriores a 16.2R1-S3, 16.2R2;

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
Low
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2017-06-28 CVE Reserved
  • 2017-10-13 CVE Published
  • 2024-06-23 EPSS Updated
  • 2024-09-16 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-400: Uncontrolled Resource Consumption
CAPEC
References (1)
URL Tag Source
URL Date SRC
URL Date SRC
URL Date SRC
https://kb.juniper.net/JSA10817 2019-10-09
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 12.1x45
Search vendor "Juniper" for product "Junos" and version "12.1x45"
-
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 12.3x48
Search vendor "Juniper" for product "Junos" and version "12.3x48"
-
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 14.1
Search vendor "Juniper" for product "Junos" and version "14.1"
-
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 14.1x53
Search vendor "Juniper" for product "Junos" and version "14.1x53"
-
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 14.2
Search vendor "Juniper" for product "Junos" and version "14.2"
-
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 15.1
Search vendor "Juniper" for product "Junos" and version "15.1"
-
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 15.1x49
Search vendor "Juniper" for product "Junos" and version "15.1x49"
-
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 15.1x53
Search vendor "Juniper" for product "Junos" and version "15.1x53"
-
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 16.1
Search vendor "Juniper" for product "Junos" and version "16.1"
-
Affected
Juniper
Search vendor "Juniper"
 Junos
Search vendor "Juniper" for product "Junos"
 16.2
Search vendor "Juniper" for product "Junos" and version "16.2"
-
Affected