CVE-2016-1277

moderate-risk
Published 2016-09-09

Juniper Junos OS before 12.1X46-D50, 12.1X47 before 12.1X47-D40, 12.3X48 before 12.3X48-D30, 13.3 before 13.3R9, 14.1 before 14.1R8, 14.1X53 before 14.1X53-D40, 14.2 before 14.2R6, 15.1 before 15.1F6 or 15.1R3, and 15.1X49 before 15.1X49-D40, when configured with a GRE or IPIP tunnel, allow remote attackers to cause a denial of service (kernel panic) via a crafted ICMP packet.

Do I need to act?

-
0.58% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.9/10 Medium
NETWORK / HIGH complexity

Affected Products (20)

Affected Vendors

Juniper

References (6)

Mitigation http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10752
http://www.securityfocus.com/bid/91755
http://www.securitytracker.com/id/1036306
Mitigation http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10752
http://www.securityfocus.com/bid/91755
http://www.securitytracker.com/id/1036306
46
/ 100
moderate-risk
Severity 18/34 · Moderate
Exploitability 2/34 · Minimal
Exposure 26/34 · High