PT-2016-1746 · Juniper Networks · Junos
Published
2016-04-15
·
Updated
2016-04-20
·
CVE-2016-1273
CVSS v3.1
5.9
Medium
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Juniper Junos OS versions prior to 13.2X51-D40
Juniper Junos OS versions prior to 14.1X53-D30
Juniper Junos OS versions prior to 15.1X53-D20
Description
The issue is related to insufficient entropy in the Juniper Junos OS, which makes it easier for remote attackers to defeat cryptographic encryption and authentication protection mechanisms. The vulnerability is associated with errors in cryptographic transformations, allowing a remote attacker to bypass cryptographic protection mechanisms for encryption and authentication.
Recommendations
For versions prior to 13.2X51-D40, update to version 13.2X51-D40 or later.
For versions prior to 14.1X53-D30, update to version 14.1X53-D30 or later.
For versions prior to 15.1X53-D20, update to version 15.1X53-D20 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos