CVE-2013-4687
Last modified
CVE-2013-4687 is a vulnerability of currently unknown severity. flowd in Juniper Junos 10.4 before 10.4S14, 11.2 and 11.4 before 11.4R6-S2, and 12.1 before 12.1R6 on SRX devices, when certain Application Layer Gateways (ALGs) are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted TCP packets, aka PRs 727980, 806269, and 835593.. EPSS estimates a 2.61% chance of exploitation in the next 30 days.
Description
flowd in Juniper Junos 10.4 before 10.4S14, 11.2 and 11.4 before 11.4R6-S2, and 12.1 before 12.1R6 on SRX devices, when certain Application Layer Gateways (ALGs) are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted TCP packets, aka PRs 727980, 806269, and 835593.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos | 10.4 |
| Juniper | Junos | 11.2 |
| Juniper | Junos | 11.4 |
| Juniper | Junos | 12.1 |
| Juniper | Srx100 | All versions |
| Juniper | Srx110 | All versions |
| Juniper | Srx1400 | All versions |
| Juniper | Srx210 | All versions |
| Juniper | Srx220 | All versions |
| Juniper | Srx240 | All versions |
| Juniper | Srx3400 | All versions |
| Juniper | Srx3600 | All versions |
| Juniper | Srx550 | All versions |
| Juniper | Srx5600 | All versions |
| Juniper | Srx5800 | All versions |
| Juniper | Srx650 | All versions |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-4687?
How severe is CVE-2013-4687?
How do I fix CVE-2013-4687?
Are you affected by CVE-2013-4687?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST