← Back

CVE-2018-0014

nvd nist
Published: Jan 10, 2018Modified: Nov 21, 2024

JSON object

Loading...
6.5
Vector
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 2.8 / Impact: 3.6
Source: NVD

Description

Juniper Networks ScreenOS devices do not pad Ethernet packets with zeros, and thus some packets can contain fragments of system memory or data from previous packets. This issue is often detected as CVE-2003-0001. The issue affects all versions of Juniper Networks ScreenOS prior to 6.3.0r25.

Affected (25)

Products: Juniper: Screenos
Juniper
1 product
Screenos
Configuration A
25 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Screenos
Version 6.3.0r10
Screenos
Version 6.3.0r11
Screenos
Version 6.3.0r12
Screenos
Version 6.3.0r13
Screenos
Version 6.3.0r14
Screenos
Version 6.3.0r15
Screenos
Version 6.3.0r16
Screenos
Version 6.3.0r17
Screenos
Version 6.3.0r18
Screenos
Version 6.3.0r19
Screenos
Version 6.3.0r1
Screenos
Version 6.3.0r20
Screenos
Version 6.3.0r21
Screenos
Version 6.3.0r22
Screenos
Version 6.3.0r23
Screenos
Version 6.3.0r24
Screenos
Version 6.3.0r25
Screenos
Version 6.3.0r2
Screenos
Version 6.3.0r3
Screenos
Version 6.3.0r4
Screenos
Version 6.3.0r5
Screenos
Version 6.3.0r6
Screenos
Version 6.3.0r7
Screenos
Version 6.3.0r8
Screenos
Version 6.3.0r9

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

Source: sirt@juniper.net
Third Party AdvisoryVDB Entry
Source: sirt@juniper.net
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.