CVE-2017-2300

7.5 HIGH

Published: May 30, 2017 Modified: May 13, 2026

Description

On Juniper Networks SRX Series Services Gateways chassis clusters running Junos OS 12.1X46 prior to 12.1X46-D65, 12.3X48 prior to 12.3X48-D40, 12.3X48 prior to 12.3X48-D60, flowd daemon on the primary node of an SRX Series chassis cluster may crash and restart when attempting to synchronize a multicast session created via crafted multicast packets.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://www.securityfocus.com/bid/95400

Source: sirt@juniper.net

Third Party Advisory VDB Entry

http://www.securitytracker.com/id/1037597

Source: sirt@juniper.net

https://kb.juniper.net/JSA10768

Source: sirt@juniper.net

Mitigation Vendor Advisory

http://www.securityfocus.com/bid/95400

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory VDB Entry

http://www.securitytracker.com/id/1037597

Source: af854a3a-2127-422b-91ae-364da2661108

https://kb.juniper.net/JSA10768

Source: af854a3a-2127-422b-91ae-364da2661108

Mitigation Vendor Advisory

6 reference(s) from NVD

Quick Stats

CVSS v3 Score

7.5 / 10.0

EPSS (Exploit Probability)

1.8%

76th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

juniper