Vulnerability Name: | CVE-2016-1273 | ||||||||||||
Assigned: | 2015-12-30 | ||||||||||||
Published: | 2016-04-15 | ||||||||||||
Updated: | 2016-04-20 | ||||||||||||
Summary: | Juniper Junos OS before 13.2X51-D40, 14.x before 14.1X53-D30, and 15.x before 15.1X53-D20 on QFX5100 and QFX10002 switches do not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic encryption and authentication protection mechanisms via unspecified vectors. | ||||||||||||
CVSS v3 Severity: | 5.9 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
| ||||||||||||
CVSS v2 Severity: | 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
| ||||||||||||
Vulnerability Type: | CWE-310 | ||||||||||||
References: | Source: MITRE Type: CNA CVE-2016-1273 Source: CONFIRM Type: Vendor Advisory http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10746 | ||||||||||||
Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||||||
BACK |