CVE-2015-5360

Juniper Junos Multiple Versions - DoS via Crafted SEND Packet

Title source: llm

Description

IPv6 sendd in Juniper Junos 12.1X44 before 12.1X44-D51, 12.1X46 before 12.1X46-D36, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R10, 12.3X48 before 12.3X48-D20, 13.2 before 13.2R8, 13.3 before 13.3R6, 14.1 before 14.1R5, 14.2 before 14.2R3, 15.1 before 15.1R1, and 15.1X49 before 15.1X49-D20, when the "set protocols neighbor-discovery secure security-level default" option is configured, allows remote attackers to cause a denial of service (CPU consumption) via a crafted Secure Neighbor Discovery (SEND) Protocol packet.

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1032849

Vendor Advisory x_refsource_confirm

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10688

Scores

EPSS 0.0047

EPSS Percentile 65.0%

Details

CWE

CWE-399

Status published

Products (8)

juniper/junos 12.1x44 (9 CPE variants)

juniper/junos 12.1x46 (6 CPE variants)

juniper/junos 12.1x47 (4 CPE variants)

juniper/junos 12.3 (10 CPE variants)

juniper/junos 12.3x48 (3 CPE variants)

juniper/junos 13.2 (8 CPE variants)

juniper/junos 13.3 (7 CPE variants)

juniper/junos 14.1 (3 CPE variants)

Published Jul 16, 2015

Tracked Since Feb 18, 2026