CVE-2017-10610

Published Oct 13, 2017

Last updated 5 years ago

CVSS medium 5.9

Overview

Description: On SRX Series devices, a crafted ICMP packet embedded within a NAT64 IPv6 to IPv4 tunnel may cause the flowd process to crash. Repeated crashes of the flowd process constitutes an extended denial of service condition for the SRX Series device. This issue only occurs if NAT64 is configured. Affected releases are Juniper Networks Junos OS 12.1X46 prior to 12.1X46-D71, 12.3X48 prior to 12.3X48-D55, 15.1X49 prior to 15.1X49-D100 on SRX Series. No other Juniper Networks products or platforms are affected by this issue.
Source: sirt@juniper.net
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 5.9
Impact score: 3.6
Exploitability score: 2.2
Vector string: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFB89F64-16BB-4A14-9084-B338668D7FF1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A71742CF-50B1-44BB-AB7B-27E5DCC9CF70"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FD4237A-C257-4D8A-ABC4-9B2160530A4E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A449C87-C5C3-48FE-9E46-64ED5DD5F193"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4B6215F-76BF-473F-B325-0975B0EB101E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1C4A10C-49A3-4103-9E56-F881113BC5D7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d35:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50E7FD07-A309-48EC-A520-C7F0FA35865C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d40:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F868948A-04D7-473B-971F-721302653633"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d45:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "830A9EBA-88F1-4277-B98F-75AC52A60824"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d50:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFA2ADAB-E486-4DBB-8B84-CC095D102278"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d55:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9ACD0C03-ACD9-4D47-B3EE-1D8753FF5A83"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:srx_series:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4661E4F-2C41-4B57-AE57-FF2596A35A02"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B7066A4-CD05-4E1A-89E8-71B4CB92CFF3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4AC2E1E-74FB-4DA3-8292-B2079F83FF54"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FF83BD0-3B28-481E-8C8F-09ECDA493DA4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E296274-AFC1-4F56-A4B3-827C2E0BC9D5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C82799B-BD25-4359-9E3D-4D7CA7367525"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d35:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "094485FF-960C-4533-A2AF-6C4D420D260D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d40:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8BE3661-1DE5-4F57-9384-68C1B34F6812"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d45:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B45E8A14-E7F4-41EB-9BFA-7A19E35D11FE"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d50:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6C694C6-C58C-4513-91E8-6CC22A2386E3"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:srx_series:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4661E4F-2C41-4B57-AE57-FF2596A35A02"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D90D8985-34EF-44CC-A9A7-CB0FD22676F2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18468579-0195-4DDE-BAA5-4BE4068F3A69"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E5FAA97-171F-4DB9-B78E-6E1A5F34336A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d35:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "870244F3-1C05-4F10-A205-5189BB860F46"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d40:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "235EE40B-AA15-4F39-8087-A051F4F70995"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d45:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "17330544-3AFC-463E-A146-2840A8AE17D2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d50:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8ABA301F-7866-42A5-8391-E07BEAFF06FA"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d55:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "884E4A85-ED42-4391-9FDD-9052F957743A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d60:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1901864B-688B-4352-A587-4B96B4E49FB1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d65:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78F53FBF-C6D8-4AE5-87EC-9D9F88DCEFB9"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d70:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B6670FB-9F5A-469B-97F2-074C28572065"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d75:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71198992-83AA-4E28-BA7D-A3C1897B5E2B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d80:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4323D874-C317-4D76-8E2D-C82376D84CBE"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d90:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F56067DA-EBA9-481A-B60B-52148584EFBD"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:srx_series:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4661E4F-2C41-4B57-AE57-FF2596A35A02"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References