CVE-2017-2304: Infoleak
First published: Tue May 30 2017(Updated: )
Juniper Networks QFX3500, QFX3600, QFX5100, QFX5200, EX4300 and EX4600 devices running Junos OS 14.1X53 prior to 14.1X53-D40, 15.1X53 prior to 15.1X53-D40, 15.1 prior to 15.1R2, do not pad Ethernet packets with zeros, and thus some packets can contain fragments of system memory or data from previous packets. This issue is also known as 'Etherleak'
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper JUNOS | =14.1x53 | |
| Juniper JUNOS | =14.1x53-d10 | |
| Juniper JUNOS | =14.1x53-d15 | |
| Juniper JUNOS | =14.1x53-d16 | |
| Juniper JUNOS | =14.1x53-d25 | |
| Juniper JUNOS | =14.1x53-d26 | |
| Juniper JUNOS | =14.1x53-d27 | |
| Juniper JUNOS | =14.1x53-d30 | |
| Juniper JUNOS | =14.1x53-d35 | |
| Juniper JUNOS | =15.1 | |
| Juniper JUNOS | =15.1-r1 | |
| Juniper JUNOS | =15.1x53 | |
| Juniper JUNOS | =15.1x53-d20 | |
| Juniper JUNOS | =15.1x53-d21 | |
| Juniper JUNOS | =15.1x53-d25 | |
| Juniper JUNOS | =15.1x53-d30 | |
| Juniper JUNOS | =15.1x53-d32 | |
| Juniper JUNOS | =15.1x53-d33 | |
| Juniper JUNOS | =15.1x53-d34 | |
| Juniper Ex4300 | ||
| Juniper EX4600 | ||
| Juniper Qfx3500 | ||
| Juniper Qfx3600 | ||
| Juniper Qfx5100 | ||
| Juniper Qfx5200 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-2304?
CVE-2017-2304 is classified as a medium severity vulnerability due to its potential to expose fragments of system memory.
How do I fix CVE-2017-2304?
To fix CVE-2017-2304, upgrade to Junos OS version 14.1X53-D40, 15.1X53-D40, or 15.1R2 or later.
What devices are affected by CVE-2017-2304?
The affected devices include Juniper Networks QFX3500, QFX3600, QFX5100, QFX5200, EX4300, and EX4600 running specific versions of Junos OS.
Is my Juniper device vulnerable to CVE-2017-2304?
If your device is running Junos OS versions 14.1X53 prior to 14.1X53-D40 or 15.1 prior to 15.1R2, it is vulnerable to CVE-2017-2304.
What type of information can be exposed due to CVE-2017-2304?
CVE-2017-2304 can expose fragments of system memory or data from previous packets, potentially leading to sensitive information leakage.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/juniper
- canonical/juniper junos
- version/juniper junos/14.1x53
- version/juniper junos/14.1x53-d10
- version/juniper junos/14.1x53-d15
- version/juniper junos/14.1x53-d16
- version/juniper junos/14.1x53-d25
- version/juniper junos/14.1x53-d26
- version/juniper junos/14.1x53-d27
- version/juniper junos/14.1x53-d30
- version/juniper junos/14.1x53-d35
- version/juniper junos/15.1
- version/juniper junos/15.1-r1
- version/juniper junos/15.1x53
- version/juniper junos/15.1x53-d20
- version/juniper junos/15.1x53-d21
- version/juniper junos/15.1x53-d25
- version/juniper junos/15.1x53-d30
- version/juniper junos/15.1x53-d32
- version/juniper junos/15.1x53-d33
- version/juniper junos/15.1x53-d34
- canonical/juniper ex4300
- canonical/juniper ex4600
- canonical/juniper qfx3500
- canonical/juniper qfx3600
- canonical/juniper qfx5100
- canonical/juniper qfx5200