What is the severity of CVE-2014-6381?

CVE-2014-6381 has a high severity rating due to its potential to cause a denial of service in affected devices.

How do I fix CVE-2014-6381?

To fix CVE-2014-6381, update to the appropriate software versions: 8.0.4, 9.0.2.11, 9.0.3.5, or 9.1.1 or later.

Which devices are affected by CVE-2014-6381?

CVE-2014-6381 affects Juniper WLC devices running vulnerable WLAN Software releases 8.0.x, 9.0.x, 9.0.3.x, and 9.1.x.

Can CVE-2014-6381 be exploited remotely?

Yes, CVE-2014-6381 allows remote attackers to exploit the vulnerability, leading to device disconnections.

What features need to be enabled for CVE-2014-6381 to be a risk?

The vulnerability is a risk when 'Proxy ARP' or 'No Broadcast' features are enabled in a clustered setup.

Vulnerability/
CVE-2014-6381

low

2.9

CWE

12/12/2014

6/8/2024

CVE-2014-6381: Input Validation

First published: Fri Dec 12 2014(Updated: )

Juniper WLC devices with WLAN Software releases 8.0.x before 8.0.4, 9.0.x before 9.0.2.11, 9.0.3.x before 9.0.3.5, and 9.1.x before 9.1.1, when "Proxy ARP" or "No Broadcast" features are enabled in a clustered setup, allows remote attackers to cause a denial of service (device disconnect) via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Juniper SmartPass	=8.0
Juniper SmartPass	=8.0.2.1
Juniper SmartPass	=8.0.3.1
Juniper SmartPass	=9.0
Juniper SmartPass	=9.1
Juniper Networks Mobility System Software	=8.0
Juniper Networks Mobility System Software	=8.0.2.2
Juniper Networks Mobility System Software	=8.0.3.6
Juniper Networks Mobility System Software	=9.0
Juniper Networks Mobility System Software	=9.0.2.5
Juniper Networks Mobility System Software	=9.1
Juniper Ringmaster	=8.0
Juniper Ringmaster	=8.0.2.1
Juniper Ringmaster	=8.0.3.2
Juniper Ringmaster	=9.0
Juniper Ringmaster	=9.0.2.1
Juniper Ringmaster	=9.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-6381?
CVE-2014-6381 has a high severity rating due to its potential to cause a denial of service in affected devices.
How do I fix CVE-2014-6381?
To fix CVE-2014-6381, update to the appropriate software versions: 8.0.4, 9.0.2.11, 9.0.3.5, or 9.1.1 or later.
Which devices are affected by CVE-2014-6381?
CVE-2014-6381 affects Juniper WLC devices running vulnerable WLAN Software releases 8.0.x, 9.0.x, 9.0.3.x, and 9.1.x.
Can CVE-2014-6381 be exploited remotely?
Yes, CVE-2014-6381 allows remote attackers to exploit the vulnerability, leading to device disconnections.
What features need to be enabled for CVE-2014-6381 to be a risk?
The vulnerability is a risk when 'Proxy ARP' or 'No Broadcast' features are enabled in a clustered setup.

agent/softwarecombine
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/weakness
agent/author
agent/references
agent/severity
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/juniper
canonical/juniper smartpass
version/juniper smartpass/8.0
version/juniper smartpass/8.0.2.1
version/juniper smartpass/8.0.3.1
version/juniper smartpass/9.0
version/juniper smartpass/9.1
canonical/juniper networks mobility system software
version/juniper networks mobility system software/8.0
version/juniper networks mobility system software/8.0.2.2
version/juniper networks mobility system software/8.0.3.6
version/juniper networks mobility system software/9.0
version/juniper networks mobility system software/9.0.2.5
version/juniper networks mobility system software/9.1
canonical/juniper ringmaster
version/juniper ringmaster/8.0
version/juniper ringmaster/8.0.2.1
version/juniper ringmaster/8.0.3.2
version/juniper ringmaster/9.0
version/juniper ringmaster/9.0.2.1
version/juniper ringmaster/9.1