PT-2017-11414 · Juniper Networks · Srx+1

Published

2017-10-13

Updated

2019-10-09

CVE-2017-10619

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 12.3X48-D45 Junos OS versions prior to 15.1X49-D80

Description The issue occurs when Express Path is configured on certain Juniper Networks SRX devices in high availability cluster configuration mode, causing the flowd process to crash due to certain multicast packets. This can lead to a denial of service condition, interrupting traffic flow and triggering fail-over to the secondary node. The service is not enabled by default and is only supported on high-end SRX platforms.

Recommendations For Junos OS versions prior to 12.3X48-D45, update to 12.3X48-D45 or later. For Junos OS versions prior to 15.1X49-D80, update to 15.1X49-D80 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-10619

Affected Products

Junos

Srx

PT-2017-11414 · Juniper Networks · Srx+1

CVE-2017-10619

Related Identifiers

Affected Products

References · 3