CVE-2015-3006

28.02.2020, 23:15

On the QFX3500 and QFX3600 platforms, the number of bytes collected from the RANDOM_INTERRUPT entropy source when the device boots up is insufficient, possibly leading to weak or duplicate SSH keys or self-signed SSL/TLS certificates. Entropy increases after the system has been up and running for some time, but immediately after boot, the entropy is very low. This issue only affects the QFX3500 and QFX3600 switches. No other Juniper Networks products or platforms are affected by this weak entropy vulnerability.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.5 MEDIUM	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
mitre	CNA	6.5 MEDIUM	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 32%

Vendor	Product	Version
juniper	junos	12.2x50:x50
juniper	junos	12.2x50:x50
juniper	junos	12.2x50:x50
juniper	junos	12.2x50:x50
juniper	junos	12.2x50:x50
juniper	junos	13.1x50:x50
juniper	junos	13.1x50:x50
juniper	junos	13.2x51:x51
juniper	junos	13.2x51:x51
juniper	junos	13.2x51:x51
juniper	junos	13.2x51:x51
juniper	junos	13.2x52:x52
juniper	junos	13.2x52:x52
juniper	junos	14.1x53:x53

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-331 - Insufficient Entropy
The software uses an algorithm or scheme that produces insufficient entropy, leaving patterns or clusters of values that are more likely to occur than others.

References

https://kb.juniper.net/JSA10678