CVE-2017-10619

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 12.3X48-D45 Junos OS versions prior to 15.1X49-D80

Description The issue occurs when Express Path is configured on certain Juniper Networks SRX devices in high availability cluster configuration mode, causing the flowd process to crash due to certain multicast packets. This can lead to a denial of service condition, interrupting traffic flow and triggering fail-over to the secondary node. The service is not enabled by default and is only supported on high-end SRX platforms.

Recommendations For Junos OS versions prior to 12.3X48-D45, update to 12.3X48-D45 or later. For Junos OS versions prior to 15.1X49-D80, update to 15.1X49-D80 or later.