CVE-2015-3006

Опубликовано: 28 фев. 2020

Источник: nvd

CVSS3: 6.5

CVSS2: 6.8

EPSS Низкий

Описание

On the QFX3500 and QFX3600 platforms, the number of bytes collected from the RANDOM_INTERRUPT entropy source when the device boots up is insufficient, possibly leading to weak or duplicate SSH keys or self-signed SSL/TLS certificates. Entropy increases after the system has been up and running for some time, but immediately after boot, the entropy is very low. This issue only affects the QFX3500 and QFX3600 switches. No other Juniper Networks products or platforms are affected by this weak entropy vulnerability.

Ссылки

https://kb.juniper.net/JSA10678
Vendor Advisory
https://kb.juniper.net/JSA10678
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:juniper:junos:12.2x50:d10:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:12.2x50:d20:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:12.2x50:d41.1:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:12.2x50:d42.1:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:12.2x50:d56.1:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:13.1x50:d10:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:13.1x50:d25:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:13.2x51:d15:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:13.2x51:d20:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:13.2x51:d20.2:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:13.2x51:d21:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:13.2x52:d10:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:13.2x52:d5:*:*:*:*:*:*

cpe:2.3:o:juniper:junos:14.1x53:-:*:*:*:*:*:*

Одно из

cpe:2.3:h:juniper:qfx3500:-:*:*:*:*:*:*:*

cpe:2.3:h:juniper:qfx3600:-:*:*:*:*:*:*:*

EPSS

Процентиль: 32%

0.00123

Низкий

6.5 Medium

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-331

Связанные уязвимости

GHSA-639q-4j2p-pfqv

github

больше 3 лет назад