Vulnerability Description
A vulnerability in the Network Address Translation - Protocol Translation (NAT-PT) feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated crashes of the flowd daemon can result in an extended denial of service condition for the SRX device. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D72; 12.3X48 versions prior to 12.3X48-D55; 15.1X49 versions prior to 15.1X49-D90.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos | >= 12.1x46, <= 12.1x46\:d72 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/103749Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1040785Third Party AdvisoryVDB Entry
- https://kb.juniper.net/JSA10845Vendor Advisory
- http://www.securityfocus.com/bid/103749Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1040785Third Party AdvisoryVDB Entry
- https://kb.juniper.net/JSA10845Vendor Advisory
FAQ
What is CVE-2018-0017?
CVE-2018-0017 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability in the Network Address Translation - Protocol Translation (NAT-PT) feature of Junos OS on SRX series devices may allow a certain valid IPv6 packet to crash the flowd daemon. Repeated c...
How severe is CVE-2018-0017?
CVE-2018-0017 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-0017?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos.