CVE-2014-6383
Juniper Junos 13.3R3, 14.1R1, 14.1R2 - Firewall Rule Bypass via Port Matching Issue
Title source: llmDescription
The stateless firewall in Juniper Junos 13.3R3, 14.1R1, and 14.1R2, when using Trio-based PFE modules, does not properly match ports, which might allow remote attackers to bypass firewall rule.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10666
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031549
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/72071
Scores
EPSS
0.0045
EPSS Percentile
63.7%
Details
CWE
CWE-17
Status
published
Products (3)
juniper/junos
13.3 r3
juniper/junos
14.1 r1
juniper/junos
14.2 r2
Published
Jan 16, 2015
Tracked Since
Feb 18, 2026