vulnerability
Juniper Junos OS: 2016-10 Security Bulletin: OpenSSL security updates (JSA10759) (multiple CVEs)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | 09/26/2016 | 10/26/2016 | 04/11/2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
09/26/2016
Added
10/26/2016
Modified
04/11/2025
Description
The ASN.1 implementation in OpenSSL before 1.0.1o and 1.0.2 before 1.0.2c allows remote attackers to execute arbitrary code or cause a denial of service (buffer underflow and memory corruption) via an ANY field in crafted serialized data, aka the "negative zero" issue.
Solution
juniper-junos-os-upgrade-latest
References
- CVE-2015-1794
- https://attackerkb.com/topics/CVE-2015-1794
- CVE-2015-3193
- https://attackerkb.com/topics/CVE-2015-3193
- CVE-2015-3194
- https://attackerkb.com/topics/CVE-2015-3194
- CVE-2015-3195
- https://attackerkb.com/topics/CVE-2015-3195
- CVE-2015-3196
- https://attackerkb.com/topics/CVE-2015-3196
- CVE-2015-3197
- https://attackerkb.com/topics/CVE-2015-3197
- CVE-2016-0702
- https://attackerkb.com/topics/CVE-2016-0702
- CVE-2016-0703
- https://attackerkb.com/topics/CVE-2016-0703
- CVE-2016-0704
- https://attackerkb.com/topics/CVE-2016-0704
- CVE-2016-0705
- https://attackerkb.com/topics/CVE-2016-0705
- CVE-2016-0797
- https://attackerkb.com/topics/CVE-2016-0797
- CVE-2016-0798
- https://attackerkb.com/topics/CVE-2016-0798
- CVE-2016-0799
- https://attackerkb.com/topics/CVE-2016-0799
- CVE-2016-2105
- https://attackerkb.com/topics/CVE-2016-2105
- CVE-2016-2106
- https://attackerkb.com/topics/CVE-2016-2106
- CVE-2016-2108
- https://attackerkb.com/topics/CVE-2016-2108
- CVE-2016-2109
- https://attackerkb.com/topics/CVE-2016-2109
- CVE-2016-2177
- https://attackerkb.com/topics/CVE-2016-2177
- CVE-2016-2178
- https://attackerkb.com/topics/CVE-2016-2178
- CVE-2016-2180
- https://attackerkb.com/topics/CVE-2016-2180
- CVE-2016-2182
- https://attackerkb.com/topics/CVE-2016-2182
- CVE-2016-6302
- https://attackerkb.com/topics/CVE-2016-6302
- CVE-2016-6303
- https://attackerkb.com/topics/CVE-2016-6303
- CVE-2016-6304
- https://attackerkb.com/topics/CVE-2016-6304
- CVE-2016-6305
- https://attackerkb.com/topics/CVE-2016-6305
- CVE-2016-6306
- https://attackerkb.com/topics/CVE-2016-6306
- CVE-2016-6307
- https://attackerkb.com/topics/CVE-2016-6307
- DISA_SEVERITY-Category I
- DISA_SEVERITY-Category II
- IAVM-2016-A-0030
- IAVM-2016-A-0228
- IAVM-2016-A-0229
- IAVM-2016-A-0230
- IAVM-2016-A-0293
- IAVM-2016-B-0160
- IAVM-2017-A-0018
- IAVM-2017-A-0020
- IAVM-2017-A-0047
- JUNIPER-JSA10759
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.