ID

VAR-201510-0410


CVE

CVE-2015-7748


TITLE

Juniper Trio Chipset Of the chassis with the line card Junos OS Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2015-005383

DESCRIPTION

Juniper chassis with Trio (Trinity) chipset line cards and Junos OS 13.3 before 13.3R8, 14.1 before 14.1R6, 14.2 before 14.2R5, and 15.1 before 15.1R2 allow remote attackers to cause a denial of service (MPC line card crash) via a crafted uBFD packet. Juniper Junos is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. Note: The issue does not affect Junos OS 13.2 and prior. The former is a chipset product. The latter is a network operating system dedicated to the company's hardware systems. A security vulnerability exists in Juniper Networks Trio Chipset (Trinity). The following products are affected: MX-Series, EX 9200, TXP and T-4000 Trio Chipset (Trinity) using the T-4000 Trio Chipset (Trinity)

Trust: 1.98

sources: NVD: CVE-2015-7748 // JVNDB: JVNDB-2015-005383 // BID: 101103 // VULHUB: VHN-85709

AFFECTED PRODUCTS

vendor:junipermodel:junosscope:eqversion:15.1

Trust: 1.6

vendor:junipermodel:junosscope:eqversion:14.2

Trust: 1.6

vendor:junipermodel:junosscope:eqversion:13.3

Trust: 1.6

vendor:junipermodel:junosscope:eqversion:14.1

Trust: 1.6

vendor:junipermodel:junos osscope:eqversion:14.2r5

Trust: 0.8

vendor:junipermodel:junos osscope:eqversion:13.3r8

Trust: 0.8

vendor:junipermodel:junos osscope:eqversion:15.1r2

Trust: 0.8

vendor:junipermodel:junos osscope:ltversion:14.2

Trust: 0.8

vendor:junipermodel:junos osscope:ltversion:13.3

Trust: 0.8

vendor:junipermodel:junos osscope:ltversion:15.1

Trust: 0.8

vendor:junipermodel:junos osscope:eqversion:14.1r6

Trust: 0.8

vendor:junipermodel:junos osscope:ltversion:14.1

Trust: 0.8

vendor:junipermodel:junos os 13.3r7scope: - version: -

Trust: 0.3

vendor:junipermodel:junos os 13.3r6scope: - version: -

Trust: 0.3

vendor:junipermodel:junos os 13.3r4scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 15.1r1scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 15.1f2scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 15.1f1scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.2r4-s8scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.2r4-s1scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.2r4scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.2r3-s4scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.2r3scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.2r2.8scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.2r2scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.2r1scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r5scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r4-s7scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r4-s13scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r4scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r3-s9scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r3-s2scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r3scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r2-s10scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r2scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 14.1r1scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r7-s3scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r7scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r6scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r5scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r4.6scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r4scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r3scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r2scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r1.8scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r1.7scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 13.3r1scope: - version: -

Trust: 0.3

vendor:junipermodel:junos 15.1r2scope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 15.1f3scope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 14.2r5scope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 14.1r6scope:neversion: -

Trust: 0.3

vendor:junipermodel:junos 13.3r8scope:neversion: -

Trust: 0.3

sources: BID: 101103 // JVNDB: JVNDB-2015-005383 // CNNVD: CNNVD-201510-336 // NVD: CVE-2015-7748

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-7748
value: MEDIUM

Trust: 1.0

NVD: CVE-2015-7748
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201510-336
value: MEDIUM

Trust: 0.6

VULHUB: VHN-85709
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2015-7748
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-85709
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-85709 // JVNDB: JVNDB-2015-005383 // CNNVD: CNNVD-201510-336 // NVD: CVE-2015-7748

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

sources: VULHUB: VHN-85709 // JVNDB: JVNDB-2015-005383 // NVD: CVE-2015-7748

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201510-336

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-201510-336

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-005383

PATCH

title:JSA10701url:http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10701

Trust: 0.8

sources: JVNDB: JVNDB-2015-005383

EXTERNAL IDS

db:NVDid:CVE-2015-7748

Trust: 2.8

db:JUNIPERid:JSA10701

Trust: 2.0

db:BIDid:101103

Trust: 1.4

db:SECTRACKid:1033858

Trust: 1.1

db:JVNDBid:JVNDB-2015-005383

Trust: 0.8

db:CNNVDid:CNNVD-201510-336

Trust: 0.7

db:VULHUBid:VHN-85709

Trust: 0.1

sources: VULHUB: VHN-85709 // BID: 101103 // JVNDB: JVNDB-2015-005383 // CNNVD: CNNVD-201510-336 // NVD: CVE-2015-7748

REFERENCES

url:http://kb.juniper.net/infocenter/index?page=content&id=jsa10701

Trust: 1.6

url:http://www.securityfocus.com/bid/101103

Trust: 1.1

url:http://www.securitytracker.com/id/1033858

Trust: 1.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-7748

Trust: 0.8

url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-7748

Trust: 0.8

url:http://www.juniper.net/

Trust: 0.3

url:http://www.juniper.net/us/en/products-services/nos/junos/

Trust: 0.3

url:https://kb.juniper.net/infocenter/index?page=content&id=jsa10701&cat=sirt_1&actp=list

Trust: 0.3

url:http://kb.juniper.net/infocenter/index?page=content&id=jsa10701

Trust: 0.1

sources: VULHUB: VHN-85709 // BID: 101103 // JVNDB: JVNDB-2015-005383 // CNNVD: CNNVD-201510-336 // NVD: CVE-2015-7748

CREDITS

The vendor reported this issue.

Trust: 0.3

sources: BID: 101103

SOURCES

db:VULHUBid:VHN-85709
db:BIDid:101103
db:JVNDBid:JVNDB-2015-005383
db:CNNVDid:CNNVD-201510-336
db:NVDid:CVE-2015-7748

LAST UPDATE DATE

2025-04-13T23:22:23.591000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-85709date:2017-10-06T00:00:00
db:BIDid:101103date:2017-09-28T00:00:00
db:JVNDBid:JVNDB-2015-005383date:2015-10-21T00:00:00
db:CNNVDid:CNNVD-201510-336date:2015-10-20T00:00:00
db:NVDid:CVE-2015-7748date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:VULHUBid:VHN-85709date:2015-10-19T00:00:00
db:BIDid:101103date:2017-09-28T00:00:00
db:JVNDBid:JVNDB-2015-005383date:2015-10-21T00:00:00
db:CNNVDid:CNNVD-201510-336date:2015-10-20T00:00:00
db:NVDid:CVE-2015-7748date:2015-10-19T18:59:00.127