Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Junos: SRX cluster denial of service vulnerability in flowd due to multicast packets
Vulnerability Description
When Express Path (formerly known as service offloading) is configured on Juniper Networks SRX1400, SRX3400, SRX3600, SRX5400, SRX5600, SRX5800 in high availability cluster configuration mode, certain multicast packets might cause the flowd process to crash, halting or interrupting traffic from flowing through the device and triggering RG1+ (data-plane) fail-over to the secondary node. Repeated crashes of the flowd process may constitute an extended denial of service condition. This service is not enabled by default and is only supported in high-end SRX platforms. Affected releases are Juniper Networks Junos OS 12.3X48 prior to 12.3X48-D45, 15.1X49 prior to 15.1X49-D80 on SRX1400, SRX3400, SRX3600, SRX5400, SRX5600, SRX5800.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款Juniper Networks产品Junos OS 安全漏洞
Vulnerability Description
Juniper SRX1400等都是美国瞻博网络(Juniper Networks)公司的防火墙设备。Junos OS是运行在其中的一套操作系统。 多款Juniper Networks产品中的Junos OS 12.3X48版本和15.1X49版本的high availability cluster configuration模式存在安全漏洞。攻击者可利用该漏洞造成拒绝服务(flowd进程崩溃),停止或拦截流量。以下产品受到影响:Juniper SRX1400;SRX3400;SRX3600;SRX540
CVSS Information
N/A
Vulnerability Type
N/A