CVE-2018-0014

Juniper Networks ScreenOS devices do not pad Ethernet packets with zeros, and thus some packets can contain fragments of system memory or data from previous packets. This issue is often detected as CVE-2003-0001. The issue affects all versions of Juniper Networks ScreenOS prior to 6.3.0r25.
Severity
MEDIUM
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Atk. Vector
ADJACENT_NETWORK
Atk. Complexity
LOW
Priv. Required
NONE
Base Score
CVSS 3.x
EPSS Score
Percentile: 25%
VendorProductVersion
juniperscreenos
6.3.0r1
juniperscreenos
6.3.0r2
juniperscreenos
6.3.0r3
juniperscreenos
6.3.0r4
juniperscreenos
6.3.0r5
juniperscreenos
6.3.0r6
juniperscreenos
6.3.0r7
juniperscreenos
6.3.0r8
juniperscreenos
6.3.0r9
juniperscreenos
6.3.0r10
juniperscreenos
6.3.0r11
juniperscreenos
6.3.0r12
juniperscreenos
6.3.0r13
juniperscreenos
6.3.0r14
juniperscreenos
6.3.0r15
juniperscreenos
6.3.0r16
juniperscreenos
6.3.0r17
juniperscreenos
6.3.0r18
juniperscreenos
6.3.0r19
juniperscreenos
6.3.0r20
juniperscreenos
6.3.0r21
juniperscreenos
6.3.0r22
juniperscreenos
6.3.0r23
juniperscreenos
6.3.0r24
juniperscreenos
6.3.0r25
𝑥
= Vulnerable software versions