CVE-2015-3006

Name of the Vulnerable Software and Affected Versions: Juniper QFX3500 and QFX3600 switches (affected versions not specified)

Description: The issue is related to insufficient entropy collection from the RANDOM INTERRUPT entropy source when the device boots up, potentially leading to weak or duplicate SSH keys or self-signed SSL/TLS certificates. Entropy increases after the system has been up and running for some time, but immediately after boot, the entropy is very low.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.