CVE-2017-2340

MEDIUM

Juniper Networks Junos OS <15.1R4-16.1R3 - DoS

Title source: llm

Description

On Juniper Networks Junos OS 15.1 releases from 15.1R3 to 15.1R4, 16.1 prior to 16.1R3, on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured, a vulnerability in processing IPv6 ND packets originating from subscribers and destined to M/MX series routers can result in a PFE (Packet Forwarding Engine) hang or crash.

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/97607

[Vendor Advisory] https://kb.juniper.net/JSA10786

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1038254

Scores

CVSS v3 5.3

EPSS 0.0041

EPSS Percentile 61.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Classification

CWE

CWE-20

Status published

Affected Products (8)

juniper/junos

Juniper Networks/Junos OS on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured < 15.1 releases from 15.1R3 to 15.1R4

Juniper Networks/Junos OS on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured < 16.1 prior to 16.1R3

Juniper Networks/Junos OS on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured < 16.2R1 and all subsequent releases have a resolution for this vulnerability

Juniper Networks/Junos OS on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured < All releases prior to 15.1R3 are not affected.

Timeline

Published Apr 24, 2017

Tracked Since Feb 18, 2026