CVE-2014-6386
Severity CVSS v4.0:
Pending analysis
Type:
CWE-17
Code Errors
Publication date:
16/01/2015
Last modified:
12/04/2025
Description
Juniper Junos 11.4 before 11.4R8, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, 12.1X47 before 12.1X47-D10, 12.2 before 12.2R9, 12.3R2 before 12.3R2-S3, 12.3 before 12.3R3, 13.1 before 13.1R4, and 13.2 before 13.2R1 allows remote attackers to cause a denial of service (assertion failure and rpd restart) via a crafted BGP FlowSpec prefix.
Impact
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:juniper:junos:11.4:r1:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:11.4:r2:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:11.4:r3:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:11.4:r4:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:11.4:r5:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:11.4:r6:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:11.4:r7:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:*:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d10:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d15:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d20:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d25:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d30:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x45:*:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x45:d10:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page