Free vulnerability management software
Mageni is a free, open-source, and powerful vulnerability management platform that takes the pain out of cybersecurity and vulnerability management.
Download Now
CVE-2018-0018
CVE information
Published
Last Modified
CVSSv2.0 Severity
CVSSv3.1 Severity
Impact Analysis
Description
On SRX Series devices during compilation of IDP policies, an attacker sending specially crafted packets may be able to bypass firewall rules, leading to information disclosure which an attacker may use to gain control of the target device or other internal devices, systems or services protected by the SRX Series device. This issue only applies to devices where IDP policies are applied to one or more rules. Customers not using IDP policies are not affected. Depending on if the IDP updates are automatic or not, as well as the interval between available updates, an attacker may have more or less success in performing reconnaissance or bypass attacks on the victim SRX Series device or protected devices. ScreenOS with IDP is not vulnerable to this issue. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D60 on SRX; 12.3X48 versions prior to 12.3X48-D35 on SRX; 15.1X49 versions prior to 15.1X49-D60 on SRX..
CVSSv2.0 Score
- Severity
- Medium
- Base Score
- 4.3/10
- Exploit Score
- 8.6/10
- Access Vector
- Network
- Access Complexity
- Medium
- Authentication Required
- None
- Impact Score
- 2.9/10
- Confidentiality Impact
- Partial
- Availability Impact
- None
- Integrity Impact
- None
CVSSv3.1 Score
- Severity
- Medium
- Base Score
- 5.9/10
- Exploit Score
- 2.2/10
- Access Vector
- Network
- Access Complexity
- High
- Privileges Required
- None
- Impact Score
- 3.6/10
- Confidentiality Impact
- High
- Availability Impact
- None
- Integrity Impact
- None
- Scope
- Unchanged
- User Interaction
- None
Products Affected
CPE | Affected | Vulnerable | Excluding | Edit |
---|---|---|---|---|
cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:d45:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:d50:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:d35:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:d40:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:d55:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d30:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d50:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d30:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d35:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d45:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d40:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:* |
No
|
- |
References
Ease with a few clicks your vulnerability scanning, assessment and management process
Mageni is a free and open-source vulnerability management software. Download it now.
1. Download Multipass
2. Launch a multipass instance
3. Install Mageni
1. If you don’t have it already, install Brew. Then, to install Multipass simply execute:
2. Launch a multipass instance
2. Install Mageni
1. Download the installer for Windows
2. Ensure your network is private
3. Run the installer
4. Launch a multipass instance
5. Log into the multipass instance
6. Install Mageni