vulnerability

Juniper Junos OS: 2021-07 Security Bulletin: Junos OS: FreeBSD-EN-18:11.listen: TCP during bind, listen or connect and UDP during bind may experience Denial of Service for IPv6 based sockets. (JSA11178) (CVE-2018-6925)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:N/I:N/A:C)	2018-09-28	2021-07-15	2022-03-21

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:N/A:C)

Published

2018-09-28

Added

2021-07-15

Modified

2022-03-21

Description

In FreeBSD before 11.2-STABLE(r338986), 11.2-RELEASE-p4, 11.1-RELEASE-p15, 10.4-STABLE(r338985), and 10.4-RELEASE-p13, due to improper maintenance of IPv6 protocol control block flags through various failure paths, an unprivileged authenticated local user may be able to cause a NULL pointer dereference causing the kernel to crash.

Solution

juniper-junos-os-upgrade-latest

References

CVE-2018-6925
https://attackerkb.com/topics/CVE-2018-6925
JUNIPER-JSA11178

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today