// For flags

CVE-2018-0014

ScreenOS: Etherleak vulnerability found on ScreenOS device

Severity Score

6.5
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Juniper Networks ScreenOS devices do not pad Ethernet packets with zeros, and thus some packets can contain fragments of system memory or data from previous packets. This issue is often detected as CVE-2003-0001. The issue affects all versions of Juniper Networks ScreenOS prior to 6.3.0r25.

Los dispositivos Juniper Networks ScreenOS no rellenan con ceros los paquetes Ethernet, por lo que algunos paquetes podrĂ­an contener fragmentos de memoria del sistema o datos de paquetes anteriores. Este problema se suele detectar como CVE-2003-0001. Este problema afecta a todas las versiones de Juniper Networks ScreenOS anteriores a 6.3.0r25.

*Credits: N/A
CVSS Scores
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None
Attack Vector
Adjacent
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2017-11-16 CVE Reserved
  • 2018-01-10 CVE Published
  • 2023-06-03 EPSS Updated
  • 2024-09-16 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (2)
URL Tag Source
http://www.securitytracker.com/id/1040185 Third Party Advisory
URL Date SRC
URL Date SRC
URL Date SRC
https://kb.juniper.net/JSA10841 2019-10-09
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r1
Search vendor "Juniper" for product "Screenos" and version "6.3.0r1"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r2
Search vendor "Juniper" for product "Screenos" and version "6.3.0r2"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r3
Search vendor "Juniper" for product "Screenos" and version "6.3.0r3"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r4
Search vendor "Juniper" for product "Screenos" and version "6.3.0r4"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r5
Search vendor "Juniper" for product "Screenos" and version "6.3.0r5"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r6
Search vendor "Juniper" for product "Screenos" and version "6.3.0r6"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r7
Search vendor "Juniper" for product "Screenos" and version "6.3.0r7"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r8
Search vendor "Juniper" for product "Screenos" and version "6.3.0r8"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r9
Search vendor "Juniper" for product "Screenos" and version "6.3.0r9"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r10
Search vendor "Juniper" for product "Screenos" and version "6.3.0r10"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r11
Search vendor "Juniper" for product "Screenos" and version "6.3.0r11"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r12
Search vendor "Juniper" for product "Screenos" and version "6.3.0r12"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r13
Search vendor "Juniper" for product "Screenos" and version "6.3.0r13"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r14
Search vendor "Juniper" for product "Screenos" and version "6.3.0r14"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r15
Search vendor "Juniper" for product "Screenos" and version "6.3.0r15"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r16
Search vendor "Juniper" for product "Screenos" and version "6.3.0r16"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r17
Search vendor "Juniper" for product "Screenos" and version "6.3.0r17"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r18
Search vendor "Juniper" for product "Screenos" and version "6.3.0r18"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r19
Search vendor "Juniper" for product "Screenos" and version "6.3.0r19"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r20
Search vendor "Juniper" for product "Screenos" and version "6.3.0r20"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r21
Search vendor "Juniper" for product "Screenos" and version "6.3.0r21"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r22
Search vendor "Juniper" for product "Screenos" and version "6.3.0r22"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r23
Search vendor "Juniper" for product "Screenos" and version "6.3.0r23"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r24
Search vendor "Juniper" for product "Screenos" and version "6.3.0r24"
-
Affected
Juniper
Search vendor "Juniper"
Screenos
Search vendor "Juniper" for product "Screenos"
6.3.0r25
Search vendor "Juniper" for product "Screenos" and version "6.3.0r25"
-
Affected