CVE-2018-0005

{"id": "CVE-2018-0005", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.8, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 6.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 8.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "sirt@juniper.net", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 7.4, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 2.8}]}, "published": "2018-01-10T22:29:01.103", "references": [{"url": "http://www.securitytracker.com/id/1040182", "tags": ["Third Party Advisory", "VDB Entry"], "source": "sirt@juniper.net"}, {"url": "https://kb.juniper.net/JSA10833", "tags": ["Mitigation", "Vendor Advisory"], "source": "sirt@juniper.net"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-754"}]}], "descriptions": [{"lang": "en", "value": "QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7."}, {"lang": "es", "value": "Los switches de las series QFX y EX configurados para volcar el tr\u00e1fico cuando se excede el l\u00edmite de movimiento de MAC redireccionan tr\u00e1fico en vez de volcarlo. Esto puede provocar denegaciones de servicio (DoS) u otras condiciones no esperadas. Las distribuciones afectadas son Juniper Networks Junos OS: 14.1X53 anteriores a 14.1X53-D40; 15.1X53 anteriores a 15.1X53-D55 y 15.1 anteriores a 15.1R7."}], "lastModified": "2019-10-09T23:30:56.410", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:14.1x53:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C7FCCC1-B151-465A-8327-26DB5DC074F0"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09771B8F-8B2A-4E8B-B4D3-80677697FCF3"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d15:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55E2F909-E1CC-45AA-ABA9-58178B751808"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d16:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1AA12C5-4520-4F79-80BE-66112F7AFC2A"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "807C8110-5CC2-45F0-B094-BBF9C0B63BDD"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d26:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "547E5737-D385-49B9-A69F-A3B185A34116"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d27:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2ED257ED-A56B-48A6-8568-65F36FFFC753"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d30:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74500FC7-EE82-4AA8-9A5F-15DE4835E337"}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d35:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAE14AE1-6756-4831-A8D5-A6D07DB24AF2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:juniper:ex_rps:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "42877394-A0A1-4136-A1D3-D287BFCC85E5"}, {"criteria": "cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AE3D4F71-8476-4F0D-A976-A308D6483D6D"}, {"criteria": "cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F7BD5636-93D5-4C06-964F-00055DF6B2B8"}, {"criteria": "cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3B3302CB-457F-4BD2-B80B-F70FB4C4542E"}, {"criteria": "cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "979C3597-C53B-4F4B-9EA7-126DA036C86D"}, {"criteria": "cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FC326549-217D-4194-8310-AB398D6FF3F0"}, {"criteria": "cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "47DAF5E7-E610-4D74-8573-41C16D642837"}, {"criteria": "cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "53269C69-3D1E-4F05-8EF6-81743D7A699E"}, {"criteria": "cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E594D6DC-87F6-40D2-8268-ED6021462168"}, {"criteria": "cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D7E98077-92AF-4E3E-96F0-2E6F9D6343D9"}, {"criteria": "cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D1BB20B5-EA30-4E8E-9055-2E629648436A"}, {"criteria": "cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D08A8D94-134A-41E7-8396-70D8B0735E9C"}, {"criteria": "cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F1401145-D8EC-4DB9-9CDE-9DE6C0D000C5"}, {"criteria": "cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1453E42A-77B3-4922-8EC3-1A5668C39550"}, {"criteria": "cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "26408465-BD6A-4416-B98E-691A5F651080"}, {"criteria": "cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E974B4BC-64C5-4BB6-AF31-D46AF3763416"}, {"criteria": "cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "79A8847B-4F98-4949-8639-5CD2B411D10F"}, {"criteria": "cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EDC5478F-A047-4F6D-BB11-0077A74C0174"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:15.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0D3EA8F-4D30-4383-AF2F-0FB6D822D0F3"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E6CD065-EC06-4846-BD2A-D3CA7866070F"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7620D01-1A6B-490F-857E-0D803E0AEE56"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4A1545CE-279F-4EE2-8913-8F3B2FAFE7F6"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08FC0245-A4FF-42C0-A236-8569301E351A"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "120EA9E3-788B-4CFD-A74F-17111FFD0131"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:juniper:ex_rps:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "42877394-A0A1-4136-A1D3-D287BFCC85E5"}, {"criteria": "cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AE3D4F71-8476-4F0D-A976-A308D6483D6D"}, {"criteria": "cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F7BD5636-93D5-4C06-964F-00055DF6B2B8"}, {"criteria": "cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3B3302CB-457F-4BD2-B80B-F70FB4C4542E"}, {"criteria": "cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "979C3597-C53B-4F4B-9EA7-126DA036C86D"}, {"criteria": "cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FC326549-217D-4194-8310-AB398D6FF3F0"}, {"criteria": "cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "47DAF5E7-E610-4D74-8573-41C16D642837"}, {"criteria": "cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "53269C69-3D1E-4F05-8EF6-81743D7A699E"}, {"criteria": "cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E594D6DC-87F6-40D2-8268-ED6021462168"}, {"criteria": "cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D7E98077-92AF-4E3E-96F0-2E6F9D6343D9"}, {"criteria": "cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D1BB20B5-EA30-4E8E-9055-2E629648436A"}, {"criteria": "cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D08A8D94-134A-41E7-8396-70D8B0735E9C"}, {"criteria": "cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F1401145-D8EC-4DB9-9CDE-9DE6C0D000C5"}, {"criteria": "cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1453E42A-77B3-4922-8EC3-1A5668C39550"}, {"criteria": "cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "26408465-BD6A-4416-B98E-691A5F651080"}, {"criteria": "cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E974B4BC-64C5-4BB6-AF31-D46AF3763416"}, {"criteria": "cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "79A8847B-4F98-4949-8639-5CD2B411D10F"}, {"criteria": "cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EDC5478F-A047-4F6D-BB11-0077A74C0174"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1E3B807C-196D-42B8-9042-7582A1366772"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83FEEE8F-9279-46F2-BAF9-A60537020C61"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F294E43-73FA-4EF3-90F2-EE29C56D6573"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDDE1048-BFEA-4A3E-8270-27C538A68837"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC517CD0-FF35-498F-AD33-683B43CA3829"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d34:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53F7E1C5-BFA9-426C-9F95-3EA5DB458C7E"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D58997E6-96B4-4930-A29D-B49D06DFA9D5"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d51:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AFB887FD-D3FB-439F-9A89-CC367A74DB00"}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d52:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BDA46912-D173-49C5-A0A1-64BD0889D3A0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:juniper:ex_rps:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "42877394-A0A1-4136-A1D3-D287BFCC85E5"}, {"criteria": "cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AE3D4F71-8476-4F0D-A976-A308D6483D6D"}, {"criteria": "cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F7BD5636-93D5-4C06-964F-00055DF6B2B8"}, {"criteria": "cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3B3302CB-457F-4BD2-B80B-F70FB4C4542E"}, {"criteria": "cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "979C3597-C53B-4F4B-9EA7-126DA036C86D"}, {"criteria": "cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FC326549-217D-4194-8310-AB398D6FF3F0"}, {"criteria": "cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "47DAF5E7-E610-4D74-8573-41C16D642837"}, {"criteria": "cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "53269C69-3D1E-4F05-8EF6-81743D7A699E"}, {"criteria": "cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E594D6DC-87F6-40D2-8268-ED6021462168"}, {"criteria": "cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D7E98077-92AF-4E3E-96F0-2E6F9D6343D9"}, {"criteria": "cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D1BB20B5-EA30-4E8E-9055-2E629648436A"}, {"criteria": "cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D08A8D94-134A-41E7-8396-70D8B0735E9C"}, {"criteria": "cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F1401145-D8EC-4DB9-9CDE-9DE6C0D000C5"}, {"criteria": "cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1453E42A-77B3-4922-8EC3-1A5668C39550"}, {"criteria": "cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "26408465-BD6A-4416-B98E-691A5F651080"}, {"criteria": "cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E974B4BC-64C5-4BB6-AF31-D46AF3763416"}, {"criteria": "cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "79A8847B-4F98-4949-8639-5CD2B411D10F"}, {"criteria": "cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EDC5478F-A047-4F6D-BB11-0077A74C0174"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "sirt@juniper.net"}