Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

CVE-2014-0618

CVE information

Published

8 years ago

Last Modified

5 years ago

CVSSv2.0 Severity

High

Impact Analysis

Description

Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message..

CVSSv2.0 Score

Severity
High
Base Score
7.8/10
Exploit Score
10/10
Access Vector
Network
Access Complexity
Low
Authentication Required
None
Impact Score
6.9/10
Confidentiality Impact
None
Availability Impact
Complete
Integrity Impact
None

Products Affected

CPE Affected Vulnerable Excluding Edit
cpe:2.3:o:juniper:junos:10.4:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:o:juniper:junos:12.1x45:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:o:juniper:junos:11.4:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:o:juniper:junos:12.1r:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:o:juniper:junos:12.1x44:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*
  Yes
-
cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*
  Yes
-