CVE-2017-2314

{"id": "CVE-2017-2314", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Secondary", "source": "sirt@juniper.net", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2017-07-17T13:18:23.923", "references": [{"url": "http://www.securitytracker.com/id/1038889", "tags": ["Third Party Advisory", "VDB Entry"], "source": "sirt@juniper.net"}, {"url": "https://kb.juniper.net/JSA10779", "tags": ["Vendor Advisory"], "source": "sirt@juniper.net"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Receipt of a malformed BGP OPEN message may cause the routing protocol daemon (rpd) process to crash and restart. By continuously sending specially crafted BGP OPEN messages, an attacker can repeatedly crash the rpd process causing prolonged denial of service. No other Juniper Networks products or platforms are affected by this issue. Affected releases are Juniper Networks Junos OS 12.3 prior to 12.3R12-S4, 12.3R13, 12.3R3-S4; 12.3X48 prior to 12.3X48-D50; 13.3 prior to 13.3R4-S11, 13.3R10; 14.1 prior to 14.1R8-S3, 14.1R9; 14.1X53 prior to 14.1X53-D40; 14.1X55 prior to 14.1X55-D35; 14.2 prior to 14.2R4-S7, 14.2R6-S4, 14.2R7; 15.1 prior to 15.1F2-S11, 15.1F4-S1-J1, 15.1F5-S3, 15.1F6, 15.1R4; 15.1X49 prior to 15.1X49-D100; 15.1X53 prior to 15.1X53-D33, 15.1X53-D50."}, {"lang": "es", "value": "La recepci\u00f3n de un mensaje BGP OPEN malformado puede causar que el proceso routing protocol daemon (rpd) se bloquee y reinicie. Mediante el env\u00edo continuo de mensajes BGP OPEN especialmente creados, un atacante puede bloquear repetidamente el proceso rpd causando una denegaci\u00f3n de servicio prolongada. Ning\u00fan otro producto o plataforma de Juniper Networks est\u00e1 afectada por este problema. Las versiones afectadas son Juniper Networks Junos OS versi\u00f3n 12.3 anterior a 12.3R12-S4, 12.3R13 y 12.3R3-S4; versi\u00f3n 12.3X48 anterior a 12.3X48-D50; versi\u00f3n 13.3 anterior a 13.3R4-S11 y 13.3R10; versi\u00f3n 14.1 anterior a 14.1R8-S3 y 14.1R9; versi\u00f3n 14.1X53 anterior a 14.1X53-D40; versi\u00f3n 14.1X55 anterior a 14.1X55-D35; versi\u00f3n 14.2 anterior a 14.2R4-S7, 14.2R6-S4 y 14.2R7; versi\u00f3n 15.1 anterior a 15.1F2-S11, 15.1F4-S1-J1, 15.1F5-S3, 15.1F6 y 15.1R4; versi\u00f3n 15.1X49 anterior a 15.1X49-D100; versi\u00f3n 15.1X53 anterior a 15.1X53-D33 y 15.1X53-D50."}], "lastModified": "2020-02-20T15:12:55.093", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:12.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E014A0D-0054-4EBA-BA1F-035B74BD822F"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "371A7DF8-3F4B-439D-8990-D1BC6F0C25C5"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "661B4C1E-DB85-4EB0-B26F-F6496CEF0AA6"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F0DD051A-E486-4A9D-A978-A5A980AAF237"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r12:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4ED9ACC-B6BA-4128-8934-759BB9EC904F"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CC3BCFD-2B0F-4994-9FE4-9D37FA85F1E2"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6F309FD-0A5A-4C86-B227-B2B511A5CEB4"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "960059B5-0701-4B75-AB51-0A430247D9F0"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D1DCA52-DA81-495B-B516-5571F01E3B0A"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05E187F6-BACD-4DD5-B393-B2FE4349053A"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C240840-A6BC-4E3D-A60D-22F08E67E2B2"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC90563F-6BCB-4D77-8FD4-584E3A6C7741"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3:r9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5AD03BA7-D9EC-420F-97C4-383F79D6873F"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:12.3x48:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC1FED64-8725-4978-9EBF-E3CD8EF338E4"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B7066A4-CD05-4E1A-89E8-71B4CB92CFF3"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A4AC2E1E-74FB-4DA3-8292-B2079F83FF54"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FF83BD0-3B28-481E-8C8F-09ECDA493DA4"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E296274-AFC1-4F56-A4B3-827C2E0BC9D5"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d30:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C82799B-BD25-4359-9E3D-4D7CA7367525"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d35:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "094485FF-960C-4533-A2AF-6C4D420D260D"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d40:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8BE3661-1DE5-4F57-9384-68C1B34F6812"}, {"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d45:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B45E8A14-E7F4-41EB-9BFA-7A19E35D11FE"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:14.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6237291A-B861-4D53-B7AA-C53A44B76896"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C778627-820A-48F5-9680-0205D6DB5EB6"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA7F03DC-73A2-4760-B386-2A57E9C97E65"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0CA10003-D52B-4110-9D7A-F50895E6BA17"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1:r4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B2D843A-8ADE-4888-8960-B48394DEA1D2"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1:r5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3BE66516-A06D-4C0F-8346-DFC8865C8FE8"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1:r6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EEBDFC9E-7753-42A8-A5C8-4D40D219F93A"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1:r7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25E5D543-D779-482D-AA8A-6E77C1949FBD"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1:r8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF0B8539-31FF-4AE9-91D6-47E6305D9EDF"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:14.1x53:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FEF5DD8-B0B2-4ED2-B38F-CE870485AB8C"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d15:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55E2F909-E1CC-45AA-ABA9-58178B751808"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d16:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1AA12C5-4520-4F79-80BE-66112F7AFC2A"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "807C8110-5CC2-45F0-B094-BBF9C0B63BDD"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d26:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "547E5737-D385-49B9-A69F-A3B185A34116"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d27:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2ED257ED-A56B-48A6-8568-65F36FFFC753"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d30:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74500FC7-EE82-4AA8-9A5F-15DE4835E337"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d35:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAE14AE1-6756-4831-A8D5-A6D07DB24AF2"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:14.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D59449C6-5BD5-4C07-AEF6-EEBC70D9C4C7"}, {"criteria": "cpe:2.3:o:juniper:junos:14.2:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79149AA0-17D1-4522-894F-C025F7A30FD7"}, {"criteria": "cpe:2.3:o:juniper:junos:14.2:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30726286-7CB1-4E5D-AE44-2B4D84795900"}, {"criteria": "cpe:2.3:o:juniper:junos:14.2:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33BE028F-2961-414A-9D42-C4861566C2DC"}, {"criteria": "cpe:2.3:o:juniper:junos:14.2:r4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E85AB30C-03FC-44DB-A8AA-B916A905CA66"}, {"criteria": "cpe:2.3:o:juniper:junos:14.2:r5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D01CA25F-E1E1-4831-8561-D3B0300BF4A7"}, {"criteria": "cpe:2.3:o:juniper:junos:14.2:r6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A117A0D6-6356-49DF-8B21-F6D47C6B8E94"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:15.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD0952C4-FFCC-4A78-ADFC-289BD6E269DB"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C56E6C3-BBB6-4853-91D9-99C7676D0CD4"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:f4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0EAA2998-A0D6-4818-9E7C-25E8099403E7"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:f5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D4ADFC5-D4B8-4A68-95D8-8ADF92C1CFE8"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:13.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4AF5DAA-62F5-491F-A9CE-098970671D43"}, {"criteria": "cpe:2.3:o:juniper:junos:13.3:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3FF9FF91-9184-4D18-8288-9110E35F4AE5"}, {"criteria": "cpe:2.3:o:juniper:junos:13.3:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F2E537B-9504-4912-B231-0D83F4459469"}, {"criteria": "cpe:2.3:o:juniper:junos:13.3:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4BCB3837-DCBC-4997-B63E-E47957584709"}, {"criteria": "cpe:2.3:o:juniper:junos:13.3:r9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5617BE56-FAB0-4A26-B311-E4A6C506DE80"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:14.1x55:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A51AFC81-0CF9-49BD-89A7-2C5729A09250"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D90D8985-34EF-44CC-A9A7-CB0FD22676F2"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18468579-0195-4DDE-BAA5-4BE4068F3A69"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d30:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E5FAA97-171F-4DB9-B78E-6E1A5F34336A"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d35:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "870244F3-1C05-4F10-A205-5189BB860F46"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d40:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "235EE40B-AA15-4F39-8087-A051F4F70995"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d45:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "17330544-3AFC-463E-A146-2840A8AE17D2"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d50:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8ABA301F-7866-42A5-8391-E07BEAFF06FA"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d55:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "884E4A85-ED42-4391-9FDD-9052F957743A"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d60:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1901864B-688B-4352-A587-4B96B4E49FB1"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d65:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78F53FBF-C6D8-4AE5-87EC-9D9F88DCEFB9"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d70:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B6670FB-9F5A-469B-97F2-074C28572065"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d75:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71198992-83AA-4E28-BA7D-A3C1897B5E2B"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d80:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4323D874-C317-4D76-8E2D-C82376D84CBE"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d90:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F56067DA-EBA9-481A-B60B-52148584EFBD"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E87C765-8D68-404A-AC71-3F22A7260E8C"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1E3B807C-196D-42B8-9042-7582A1366772"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83FEEE8F-9279-46F2-BAF9-A60537020C61"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F294E43-73FA-4EF3-90F2-EE29C56D6573"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDDE1048-BFEA-4A3E-8270-27C538A68837"}], "operator": "OR"}]}], "sourceIdentifier": "sirt@juniper.net"}