CVE-2017-2340

Summary

On Juniper Networks Junos OS 15.1 releases from 15.1R3 to 15.1R4, 16.1 prior to 16.1R3, on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured, a vulnerability in processing IPv6 ND packets originating from subscribers and destined to M/MX series routers can result in a PFE (Packet Forwarding Engine) hang or crash.

Affected Software

VendorProductVersion RangeStatus
Juniper NetworksJunos OS on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured15.1 releases from 15.1R3 to 15.1R4affected
Juniper NetworksJunos OS on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured16.1 prior to 16.1R3affected
Juniper NetworksJunos OS on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured16.2R1 and all subsequent releases have a resolution for this vulnerabilityaffected
Juniper NetworksJunos OS on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configuredAll releases prior to 15.1R3 are not affected.affected

Weaknesses

  • denial of service vulnerability

ADP Enrichment

CVE Program Container

Additional References

References