CVE-2017-10614

Published: Oct 13, 2017Modified: May 13, 2026

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A vulnerability in telnetd service on Junos OS allows a remote attacker to cause a limited memory and/or CPU consumption denial of service attack. This issue was found during internal product security testing. Affected releases are Juniper Networks Junos OS 12.1X46 prior to 12.1X46-D45; 12.3X48 prior to 12.3X48-D30; 14.1 prior to 14.1R4-S9, 14.1R8; 14.2 prior to 14.2R6; 15.1 prior to 15.1F5, 15.1R3; 15.1X49 prior to 15.1X49-D40; 15.1X53 prior to 15.1X53-D232, 15.1X53-D47.

Affected (48)

Products: Juniper: Junos

Juniper

1 product

Junos

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 12.1x46
Juniper Junos	Version 12.1x46 d10
Juniper Junos	Version 12.1x46 d15
Juniper Junos	Version 12.1x46 d20
Juniper Junos	Version 12.1x46 d25
Juniper Junos	Version 12.1x46 d30
Juniper Junos	Version 12.1x46 d35
Juniper Junos	Version 12.1x46 d40

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 12.3x48 d10
Juniper Junos	Version 12.3x48 d15
Juniper Junos	Version 12.3x48 d25

Configuration C

6 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 14.1
Juniper Junos	Version 14.1 r1
Juniper Junos	Version 14.1 r2
Juniper Junos	Version 14.1 r3
Juniper Junos	Version 14.1 r4
Juniper Junos	Version 14.1 r8

Configuration D

5 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 14.2 r1
Juniper Junos	Version 14.2 r2
Juniper Junos	Version 14.2 r3
Juniper Junos	Version 14.2 r4
Juniper Junos	Version 14.2 r5

Configuration E

26 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 15.1 f1
Juniper Junos	Version 15.1 f2-s1
Juniper Junos	Version 15.1 f2-s2
Juniper Junos	Version 15.1 f2-s3
Juniper Junos	Version 15.1 f2-s4
Juniper Junos	Version 15.1 f2
Juniper Junos	Version 15.1 f3
Juniper Junos	Version 15.1 f4
Juniper Junos	Version 15.1 r3
Juniper Junos	Version 15.1x49 d10
Juniper Junos	Version 15.1x49 d20
Juniper Junos	Version 15.1x49 d30
Juniper Junos	Version 15.1x49 d35
Juniper Junos	Version 15.1x53 d20
Juniper Junos	Version 15.1x53 d210
Juniper Junos	Version 15.1x53 d21
Juniper Junos	Version 15.1x53 d25
Juniper Junos	Version 15.1x53 d30
Juniper Junos	Version 15.1x53 d32
Juniper Junos	Version 15.1x53 d33
Juniper Junos	Version 15.1x53 d34
Juniper Junos	Version 15.1x53 d60
Juniper Junos	Version 15.1x53 d61
Juniper Junos	Version 15.1x53 d62
Juniper Junos	Version 15.1x53 d63
Juniper Junos	Version 15.1x53 d70

Related CWEs

CWE-400

Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (2)

https://kb.juniper.net/JSA10817

Source: sirt@juniper.net

MitigationVendor Advisory

https://kb.juniper.net/JSA10817

Source: af854a3a-2127-422b-91ae-364da2661108

MitigationVendor Advisory

Timeline

No history available yet.