vulnerability

Juniper Junos OS: PFE crash while handling IPv6 ND advertisements (JSA10786) (CVE-2017-2340)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	2017-04-24	2017-06-09	2024-11-27

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

2017-04-24

Added

2017-06-09

Modified

2024-11-27

Description

On Juniper Networks Junos OS 15.1 releases from 15.1R3 to 15.1R4, 16.1 prior to 16.1R3, on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured, a vulnerability in processing IPv6 ND packets originating from subscribers and destined to M/MX series routers can result in a PFE (Packet Forwarding Engine) hang or crash.

Solution

juniper-junos-os-upgrade-latest

References

CVE-2017-2340
https://attackerkb.com/topics/CVE-2017-2340
JUNIPER-JSA10786

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today