What is the severity of CVE-2017-2315?

The severity of CVE-2017-2315 is classified as high due to the potential for a slow memory leak affecting the affected devices.

How do I fix CVE-2017-2315?

To fix CVE-2017-2315, update your Junos OS to a version that has addressed this vulnerability, specifically any version beyond 12.3-r13 or 13.3-r8.

What devices are affected by CVE-2017-2315?

CVE-2017-2315 affects Juniper Networks EX Series Ethernet Switches running specific versions of Junos OS listed in the vulnerability report.

What type of attack does CVE-2017-2315 facilitate?

CVE-2017-2315 facilitates a denial of service attack through crafted IPv6 Neighbor Discovery packets.

Is there a workaround for CVE-2017-2315?

There is no officially recommended workaround for CVE-2017-2315; updating to a secure version is the primary mitigation strategy.

Vulnerability/
CVE-2017-2315

high

7.8

CWE

772

24/4/2017

5/8/2024

CVE-2017-2315

First published: Mon Apr 24 2017(Updated: )

On Juniper Networks EX Series Ethernet Switches running affected Junos OS versions, a vulnerability in IPv6 processing has been discovered that may allow a specially crafted IPv6 Neighbor Discovery (ND) packet destined to an EX Series Ethernet Switch to cause a slow memory leak. A malicious network-based packet flood of these crafted IPv6 NDP packets may eventually lead to resource exhaustion and a denial of service. The affected Junos OS versions are: 12.3 prior to 12.3R12-S4, 12.3R13; 13.3 prior to 13.3R10; 14.1 prior to 14.1R8-S3, 14.1R9; 14.1X53 prior ro 14.1X53-D12, 14.1X53-D40; 14.1X55 prior to 14.1X55-D35; 14.2 prior to 14.2R6-S4, 14.2R7-S6, 14.2R8; 15.1 prior to 15.1R5; 16.1 before 16.1R3; 16.2 before 16.2R1-S3, 16.2R2. 17.1R1 and all subsequent releases have a resolution for this vulnerability.

Credit: sirt@juniper.net

Affected Software	Affected Version	How to fix
Juniper Junos	=12.3-r1
Juniper Junos	=12.3-r10
Juniper Junos	=12.3-r11
Juniper Junos	=12.3-r12
Juniper Junos	=12.3-r13
Juniper Junos	=12.3-r2
Juniper Junos	=12.3-r3
Juniper Junos	=12.3-r4
Juniper Junos	=12.3-r5
Juniper Junos	=12.3-r6
Juniper Junos	=12.3-r7
Juniper Junos	=12.3-r8
Juniper Junos	=12.3-r9
Juniper Junos	=13.3-r1
Juniper Junos	=13.3-r2
Juniper Junos	=13.3-r3
Juniper Junos	=13.3-r4
Juniper Junos	=13.3-r5
Juniper Junos	=13.3-r6
Juniper Junos	=13.3-r7
Juniper Junos	=13.3-r8
Juniper Junos	=13.3-r9
Juniper Junos	=14.1-r1
Juniper Junos	=14.1-r2
Juniper Junos	=14.1-r3
Juniper Junos	=14.1-r4
Juniper Junos	=14.1-r5
Juniper Junos	=14.1-r6
Juniper Junos	=14.1-r7
Juniper Junos	=14.1-r9
Juniper Junos	=14.1x53-d10
Juniper Junos	=14.1x53-d40
Juniper Junos	=14.1x55-d35
Juniper Junos	=14.2-r1
Juniper Junos	=14.2-r2
Juniper Junos	=14.2-r3
Juniper Junos	=14.2-r4
Juniper Junos	=14.2-r5
Juniper Junos	=14.2-r7
Juniper Junos	=14.2-r8
Juniper Junos	=15.1-r1
Juniper Junos	=15.1-r2
Juniper Junos	=15.1-r3
Juniper Junos	=15.1-r4
Juniper Junos	=16.1-r1
Juniper Junos	=16.2-r2
Juniper Junos	=17.1-r1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-2315?
The severity of CVE-2017-2315 is classified as high due to the potential for a slow memory leak affecting the affected devices.
How do I fix CVE-2017-2315?
To fix CVE-2017-2315, update your Junos OS to a version that has addressed this vulnerability, specifically any version beyond 12.3-r13 or 13.3-r8.
What devices are affected by CVE-2017-2315?
CVE-2017-2315 affects Juniper Networks EX Series Ethernet Switches running specific versions of Junos OS listed in the vulnerability report.
What type of attack does CVE-2017-2315 facilitate?
CVE-2017-2315 facilitates a denial of service attack through crafted IPv6 Neighbor Discovery packets.
Is there a workaround for CVE-2017-2315?
There is no officially recommended workaround for CVE-2017-2315; updating to a secure version is the primary mitigation strategy.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/severity
agent/references
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/juniper
canonical/juniper junos
version/juniper junos/12.3-r1
version/juniper junos/12.3-r10
version/juniper junos/12.3-r11
version/juniper junos/12.3-r12
version/juniper junos/12.3-r13
version/juniper junos/12.3-r2
version/juniper junos/12.3-r3
version/juniper junos/12.3-r4
version/juniper junos/12.3-r5
version/juniper junos/12.3-r6
version/juniper junos/12.3-r7
version/juniper junos/12.3-r8
version/juniper junos/12.3-r9
version/juniper junos/13.3-r1
version/juniper junos/13.3-r2
version/juniper junos/13.3-r3
version/juniper junos/13.3-r4
version/juniper junos/13.3-r5
version/juniper junos/13.3-r6
version/juniper junos/13.3-r7
version/juniper junos/13.3-r8
version/juniper junos/13.3-r9
version/juniper junos/14.1-r1
version/juniper junos/14.1-r2
version/juniper junos/14.1-r3
version/juniper junos/14.1-r4
version/juniper junos/14.1-r5
version/juniper junos/14.1-r6
version/juniper junos/14.1-r7
version/juniper junos/14.1-r9
version/juniper junos/14.1x53-d10
version/juniper junos/14.1x53-d40
version/juniper junos/14.1x55-d35
version/juniper junos/14.2-r1
version/juniper junos/14.2-r2
version/juniper junos/14.2-r3
version/juniper junos/14.2-r4
version/juniper junos/14.2-r5
version/juniper junos/14.2-r7
version/juniper junos/14.2-r8
version/juniper junos/15.1-r1
version/juniper junos/15.1-r2
version/juniper junos/15.1-r3
version/juniper junos/15.1-r4
version/juniper junos/16.1-r1
version/juniper junos/16.2-r2
version/juniper junos/17.1-r1

Frequently Asked Questions

What is the severity of CVE-2017-2315?
The severity of CVE-2017-2315 is classified as high due to the potential for a slow memory leak affecting the affected devices.
How do I fix CVE-2017-2315?
To fix CVE-2017-2315, update your Junos OS to a version that has addressed this vulnerability, specifically any version beyond 12.3-r13 or 13.3-r8.
What devices are affected by CVE-2017-2315?
CVE-2017-2315 affects Juniper Networks EX Series Ethernet Switches running specific versions of Junos OS listed in the vulnerability report.
What type of attack does CVE-2017-2315 facilitate?
CVE-2017-2315 facilitates a denial of service attack through crafted IPv6 Neighbor Discovery packets.
Is there a workaround for CVE-2017-2315?
There is no officially recommended workaround for CVE-2017-2315; updating to a secure version is the primary mitigation strategy.

CVE-2017-2315

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-2315?

How do I fix CVE-2017-2315?

What devices are affected by CVE-2017-2315?

What type of attack does CVE-2017-2315 facilitate?

Is there a workaround for CVE-2017-2315?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2017-2315?

How do I fix CVE-2017-2315?

What devices are affected by CVE-2017-2315?

What type of attack does CVE-2017-2315 facilitate?

Is there a workaround for CVE-2017-2315?