5.0
MEDIUM
CVE-2014-9708
Embedthis Appweb HTTP Request Header NULL Pointer Dereference Denial of Service
Description

Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x=,".

INFO

Published Date :

March 31, 2015, 2:59 p.m.

Last Modified :

Nov. 21, 2024, 2:21 a.m.

Remotely Exploitable :

Yes !

Impact Score :

2.9

Exploitability Score :

10.0
Affected Products

The following products are affected by CVE-2014-9708 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Juniper junos
2 Juniper srx100
3 Juniper srx110
4 Juniper srx210
5 Juniper srx220
6 Juniper srx240
7 Juniper srx550
8 Juniper srx650
9 Juniper srx1400
10 Juniper srx3400
11 Juniper srx3600
12 Juniper srx5600
13 Juniper srx5800
14 Juniper ex2200
15 Juniper ex2200-c
16 Juniper ex2200-vc
17 Juniper ex2300
18 Juniper ex2300-24mp
19 Juniper ex2300-24p
20 Juniper ex2300-24t
21 Juniper ex2300-48mp
22 Juniper ex2300-48p
23 Juniper ex2300-48t
24 Juniper ex2300-c
25 Juniper ex2300m
26 Juniper ex3200
27 Juniper ex3300
28 Juniper ex3300-vc
29 Juniper ex3400
30 Juniper ex4200
31 Juniper ex4200-vc
32 Juniper ex4300
33 Juniper ex4300-24p
34 Juniper ex4300-24p-s
35 Juniper ex4300-24t
36 Juniper ex4300-24t-s
37 Juniper ex4300-32f
38 Juniper ex4300-32f-dc
39 Juniper ex4300-32f-s
40 Juniper ex4300-48mp
41 Juniper ex4300-48mp-s
42 Juniper ex4300-48p
43 Juniper ex4300-48p-s
44 Juniper ex4300-48t
45 Juniper ex4300-48t-afi
46 Juniper ex4300-48t-dc
47 Juniper ex4300-48t-dc-afi
48 Juniper ex4300-48t-s
49 Juniper ex4300-48tafi
50 Juniper ex4300-48tdc
51 Juniper ex4300-48tdc-afi
52 Juniper ex4300-mp
53 Juniper ex4300-vc
54 Juniper ex4300m
55 Juniper ex4400
56 Juniper ex4500
57 Juniper ex4500-vc
58 Juniper ex4550
59 Juniper ex4550-vc
60 Juniper ex4550\/vc
61 Juniper ex4600
62 Juniper ex4600-vc
63 Juniper ex4650
64 Juniper ex6200
65 Juniper ex6210
66 Juniper ex8200
67 Juniper ex8200-vc
68 Juniper ex8208
69 Juniper ex8216
70 Juniper ex9200
71 Juniper ex9204
72 Juniper ex9208
73 Juniper ex9214
74 Juniper ex9250
75 Juniper ex9251
76 Juniper ex9253
77 Juniper srx1500
78 Juniper srx240h2
79 Juniper srx240m
80 Juniper srx300
81 Juniper srx320
82 Juniper srx340
83 Juniper srx345
84 Juniper srx380
85 Juniper srx4000
86 Juniper srx4100
87 Juniper srx4200
88 Juniper srx4600
89 Juniper srx5000
90 Juniper srx5400
91 Juniper srx550_hm
92 Juniper srx550m
93 Juniper mx10
94 Juniper mx104
95 Juniper mx2010
96 Juniper mx2020
97 Juniper mx240
98 Juniper mx40
99 Juniper mx480
100 Juniper mx80
101 Juniper mx960
102 Juniper mx
103 Juniper mx10000
104 Juniper mx10003
105 Juniper mx10008
106 Juniper mx10016
107 Juniper mx150
108 Juniper mx2008
109 Juniper mx204
110 Juniper mx5
111 Juniper ptx1000
112 Juniper ptx1000-72q
113 Juniper ptx10000
114 Juniper ptx10001
115 Juniper ptx10001-36mr
116 Juniper ptx100016
117 Juniper ptx10002
118 Juniper ptx10002-60c
119 Juniper ptx10003
120 Juniper ptx10003_160c
121 Juniper ptx10003_80c
122 Juniper ptx10003_81cd
123 Juniper ptx10004
124 Juniper ptx10008
125 Juniper ptx10016
126 Juniper ptx3000
127 Juniper ptx5000
128 Juniper t1600
129 Juniper t320
130 Juniper t4000
131 Juniper t640
132 Juniper qfx10000
1 Embedthis appweb
1 Oracle enterprise_communications_broker
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2014-9708.

URL Resource
http://packetstormsecurity.com/files/131157/Appweb-Web-Server-Denial-Of-Service.html Exploit Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2015/Apr/19 Mailing List Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2015/Apr/19 Mailing List Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2015/Mar/158 Exploit Mailing List Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2015/Mar/158 Exploit Mailing List Third Party Advisory VDB Entry
http://www.openwall.com/lists/oss-security/2015/03/28/2 Mailing List Patch
http://www.openwall.com/lists/oss-security/2015/04/06/2 Mailing List Patch
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html Patch Third Party Advisory
http://www.securityfocus.com/archive/1/535028/100/0/threaded Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/archive/1/535028/100/1400/threaded Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/73407 Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1037007 Broken Link Third Party Advisory VDB Entry
https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348 Broken Link Patch
https://github.com/embedthis/appweb/issues/413 Broken Link Exploit Issue Tracking
https://security.paloaltonetworks.com/CVE-2014-9708 Third Party Advisory
https://supportportal.juniper.net/s/article/2021-07-Security-Bulletin-Junos-OS-Multiple-J-Web-vulnerabilities-resolved?language=en_US Third Party Advisory
http://packetstormsecurity.com/files/131157/Appweb-Web-Server-Denial-Of-Service.html Exploit Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2015/Apr/19 Mailing List Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2015/Apr/19 Mailing List Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2015/Mar/158 Exploit Mailing List Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2015/Mar/158 Exploit Mailing List Third Party Advisory VDB Entry
http://www.openwall.com/lists/oss-security/2015/03/28/2 Mailing List Patch
http://www.openwall.com/lists/oss-security/2015/04/06/2 Mailing List Patch
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html Patch Third Party Advisory
http://www.securityfocus.com/archive/1/535028/100/0/threaded Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/archive/1/535028/100/1400/threaded Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/73407 Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1037007 Broken Link Third Party Advisory VDB Entry
https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348 Broken Link Patch
https://github.com/embedthis/appweb/issues/413 Broken Link Exploit Issue Tracking
https://security.paloaltonetworks.com/CVE-2014-9708 Third Party Advisory
https://supportportal.juniper.net/s/article/2021-07-Security-Bulletin-Junos-OS-Multiple-J-Web-vulnerabilities-resolved?language=en_US Third Party Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2014-9708 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2014-9708 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by af854a3a-2127-422b-91ae-364da2661108

    Nov. 21, 2024

    Action Type Old Value New Value
    Added Reference http://packetstormsecurity.com/files/131157/Appweb-Web-Server-Denial-Of-Service.html
    Added Reference http://seclists.org/fulldisclosure/2015/Apr/19
    Added Reference http://seclists.org/fulldisclosure/2015/Apr/19
    Added Reference http://seclists.org/fulldisclosure/2015/Mar/158
    Added Reference http://seclists.org/fulldisclosure/2015/Mar/158
    Added Reference http://www.openwall.com/lists/oss-security/2015/03/28/2
    Added Reference http://www.openwall.com/lists/oss-security/2015/04/06/2
    Added Reference http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
    Added Reference http://www.securityfocus.com/archive/1/535028/100/0/threaded
    Added Reference http://www.securityfocus.com/archive/1/archive/1/535028/100/1400/threaded
    Added Reference http://www.securityfocus.com/bid/73407
    Added Reference http://www.securitytracker.com/id/1037007
    Added Reference https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348
    Added Reference https://github.com/embedthis/appweb/issues/413
    Added Reference https://security.paloaltonetworks.com/CVE-2014-9708
    Added Reference https://supportportal.juniper.net/s/article/2021-07-Security-Bulletin-Junos-OS-Multiple-J-Web-vulnerabilities-resolved?language=en_US
  • CVE Modified by [email protected]

    May. 14, 2024

    Action Type Old Value New Value
  • Modified Analysis by [email protected]

    Jun. 22, 2023

    Action Type Old Value New Value
    Removed Evaluator Description <a href="http://cwe.mitre.org/data/definitions/476.html">CWE-476: NULL Pointer Dereference</a>
    Changed Reference Type http://seclists.org/fulldisclosure/2015/Apr/19 Third Party Advisory, VDB Entry http://seclists.org/fulldisclosure/2015/Apr/19 Mailing List, Third Party Advisory, VDB Entry
    Changed Reference Type http://seclists.org/fulldisclosure/2015/Mar/158 Exploit, Third Party Advisory, VDB Entry http://seclists.org/fulldisclosure/2015/Mar/158 Exploit, Mailing List, Third Party Advisory, VDB Entry
    Changed Reference Type http://www.openwall.com/lists/oss-security/2015/03/28/2 No Types Assigned http://www.openwall.com/lists/oss-security/2015/03/28/2 Mailing List, Patch
    Changed Reference Type http://www.openwall.com/lists/oss-security/2015/04/06/2 No Types Assigned http://www.openwall.com/lists/oss-security/2015/04/06/2 Mailing List, Patch
    Changed Reference Type http://www.securityfocus.com/archive/1/535028/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/535028/100/0/threaded Broken Link, Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securityfocus.com/archive/1/archive/1/535028/100/1400/threaded No Types Assigned http://www.securityfocus.com/archive/1/archive/1/535028/100/1400/threaded Broken Link, Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securityfocus.com/bid/73407 No Types Assigned http://www.securityfocus.com/bid/73407 Broken Link, Third Party Advisory, VDB Entry
    Changed Reference Type http://www.securitytracker.com/id/1037007 No Types Assigned http://www.securitytracker.com/id/1037007 Broken Link, Third Party Advisory, VDB Entry
    Changed Reference Type https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348 Issue Tracking https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348 Broken Link, Patch
    Changed Reference Type https://github.com/embedthis/appweb/issues/413 Exploit https://github.com/embedthis/appweb/issues/413 Broken Link, Exploit, Issue Tracking
    Changed Reference Type https://security.paloaltonetworks.com/CVE-2014-9708 No Types Assigned https://security.paloaltonetworks.com/CVE-2014-9708 Third Party Advisory
    Changed Reference Type https://supportportal.juniper.net/s/article/2021-07-Security-Bulletin-Junos-OS-Multiple-J-Web-vulnerabilities-resolved?language=en_US No Types Assigned https://supportportal.juniper.net/s/article/2021-07-Security-Bulletin-Junos-OS-Multiple-J-Web-vulnerabilities-resolved?language=en_US Third Party Advisory
    Removed CWE NIST NVD-CWE-Other
    Added CWE NIST CWE-476
    Changed CPE Configuration OR *cpe:2.3:a:embedthis:appweb:*:*:*:*:*:*:*:* versions up to (including) 4.6.5 *cpe:2.3:a:embedthis:appweb:5.0.0:*:*:*:*:*:*:* *cpe:2.3:a:embedthis:appweb:5.1.0:*:*:*:*:*:*:* *cpe:2.3:a:embedthis:appweb:5.2.0:*:*:*:*:*:*:* OR *cpe:2.3:a:embedthis:appweb:*:*:*:*:*:*:*:* versions up to (excluding) 4.6.6 *cpe:2.3:a:embedthis:appweb:*:*:*:*:*:*:*:* versions from (including) 5.0.0 up to (excluding) 5.2.1
    Added CPE Configuration AND OR *cpe:2.3:o:juniper:junos:12.1x46:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d35:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d40:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d45:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d50:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d55:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d60:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d65:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d66:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d67:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d70:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d71:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d72:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d73:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d76:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.1x46:d77:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d30:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d35:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d40:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d45:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d50:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d51:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d55:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d60:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d65:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d66:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d70:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3x48:d75:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d100:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d110:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d120:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d130:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d131:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d140:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d15:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d150:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d160:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d170:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d25:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d30:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d35:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d40:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d45:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d50:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d55:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d60:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d65:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d70:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d75:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d80:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x49:d90:*:*:*:*:*:* OR cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx240h2:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx240m:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx380:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx4000:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx4600:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx5000:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx550_hm:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx550m:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:juniper:junos:12.3:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r10-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r10-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r11:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r12:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r12-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r12-s10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r12-s11:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r12-s12:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r12-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r12-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r12-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r12-s8:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r13:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r8:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:12.3:r9:*:*:*:*:*:* OR cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2200-vc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2300-24mp:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2300-24p:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2300-24t:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2300-48mp:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2300-48p:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2300-48t:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex2300m:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex3200:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex3300-vc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4200-vc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-24p:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-24p-s:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-24t:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-24t-s:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-32f:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-32f-dc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-32f-s:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48mp:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48mp-s:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48p:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48p-s:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48t:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48t-afi:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48t-dc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48t-dc-afi:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48t-s:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48tafi:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48tdc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-48tdc-afi:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-mp:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300-vc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4300m:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4400:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4500:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4500-vc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4550-vc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4550\/vc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4600-vc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4650:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex6200:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex6210:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex8200:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex8200-vc:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex8208:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex8216:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex9204:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex9208:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex9214:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex9250:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex9251:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex9253:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:juniper:junos:15.1:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:a1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f5-s7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s12:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s8:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s9:*:*:*:*:*:* OR cpe:2.3:h:juniper:mx:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx10:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx10000:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx10003:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx10008:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx10016:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx104:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx150:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx2008:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx2010:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx2020:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx204:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx240:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx40:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx480:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx5:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx80:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:mx960:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx1000:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx1000-72q:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10000:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10001:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10001-36mr:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx100016:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10002:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10002-60c:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10003:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10003_160c:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10003_80c:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10003_81cd:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10004:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10008:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx10016:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx3000:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ptx5000:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:t1600:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:t320:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:t4000:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:t640:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:juniper:junos:15.1x53:*:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d210:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d230:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d231:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d232:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d233:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d234:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d235:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d236:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d237:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d25:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d31:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d34:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d40:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d45:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d47:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d470:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d471:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d48:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d490:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d495:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d51:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d52:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d55:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d56:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d57:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d58:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d59:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d590:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d60:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d61:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d62:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d63:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d64:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d65:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d66:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d67:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d68:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1x53:d70:*:*:*:*:*:* OR cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx10000:-:*:*:*:*:*:*:*
    Added CPE Configuration OR *cpe:2.3:o:juniper:junos:15.1:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:a1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f2-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f5-s7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s12:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s8:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f6-s9:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:f7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r4-s7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r4-s8:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r4-s9:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r5-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r5-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r5-s5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r5-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r6-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r6-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r6-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r6-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r6-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r7-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r7-s10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r7-s11:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r7-s12:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r7-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:15.1:r7-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r3-s10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r3-s11:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r3-s8:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r4-s12:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r4-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r4-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r4-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r4-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r4-s8:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r4-s9:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r5-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r6-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r6-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r6-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r6-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r7-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r7-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r7-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.1:r7-s5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r1-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r2-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r2-s10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r2-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r2-s5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r2-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r2-s7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:16.2:r2-s8:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r1-s7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s10:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s11:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s7:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s8:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.1:r2-s9:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.2:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.2:r2-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.2:r2-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.2:r3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r1-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r1-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r2-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r2-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r2-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r2-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r3:-:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r3-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r3-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r3-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.3:r3-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r1-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r1-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r1-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r1-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r1-s5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r1-s6:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r2-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r2-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r2-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r2-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:17.4:r2-s5:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:r2-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:r2-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:r2-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:r3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:r3-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:r3-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.1:r3-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.2:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.2:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.2:r1:-:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.2:r1-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.2:r1-s3:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.2:r1-s4:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.2:r2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.2:r2-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.2:r2-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.3:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.3:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.3:r1-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.3:r1-s2:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.4:-:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.4:r1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.4:r1-s1:*:*:*:*:*:* *cpe:2.3:o:juniper:junos:18.4:r1-s2:*:*:*:*:*:*
  • CVE Modified by [email protected]

    Jun. 13, 2023

    Action Type Old Value New Value
    Added Reference http://www.securityfocus.com/archive/1/archive/1/535028/100/1400/threaded [No Types Assigned]
    Added Reference http://www.openwall.com/lists/oss-security/2015/03/28/2 [No Types Assigned]
    Added Reference https://supportportal.juniper.net/s/article/2021-07-Security-Bulletin-Junos-OS-Multiple-J-Web-vulnerabilities-resolved?language=en_US [No Types Assigned]
    Added Reference http://www.openwall.com/lists/oss-security/2015/04/06/2 [No Types Assigned]
  • CVE Modified by [email protected]

    Feb. 17, 2020

    Action Type Old Value New Value
    Removed Reference https://securityadvisories.paloaltonetworks.com/Home/Detail/60 [No Types Assigned]
    Added Reference https://security.paloaltonetworks.com/CVE-2014-9708 [No Types Assigned]
  • CVE Modified by [email protected]

    Oct. 09, 2018

    Action Type Old Value New Value
    Removed Reference http://www.securityfocus.com/archive/1/archive/1/535028/100/0/threaded [Exploit]
    Added Reference http://www.securityfocus.com/archive/1/535028/100/0/threaded [No Types Assigned]
  • CVE Modified by [email protected]

    Jul. 29, 2017

    Action Type Old Value New Value
    Added Reference http://www.securitytracker.com/id/1037007 [No Types Assigned]
  • CVE Modified by [email protected]

    Jan. 28, 2017

    Action Type Old Value New Value
    Added Reference https://securityadvisories.paloaltonetworks.com/Home/Detail/60 [No Types Assigned]
  • CVE Modified by [email protected]

    Nov. 28, 2016

    Action Type Old Value New Value
    Added Reference http://www.securityfocus.com/bid/73407 [No Types Assigned]
  • Modified Analysis by [email protected]

    Aug. 04, 2016

    Action Type Old Value New Value
    Changed CPE Configuration Configuration 1 OR *cpe:2.3:a:embedthis:appweb:4.6.5:*:*:*:*:*:*:* (and previous) *cpe:2.3:a:embedthis:appweb:5.2.0:*:*:*:*:*:*:* *cpe:2.3:a:embedthis:appweb:5.1.0:*:*:*:*:*:*:* *cpe:2.3:a:embedthis:appweb:5.0.0:*:*:*:*:*:*:* Configuration 1 OR *cpe:2.3:a:oracle:enterprise_communications_broker:2.0.0:*:*:*:*:*:*:* (and previous) Configuration 2 OR *cpe:2.3:a:embedthis:appweb:4.6.5:*:*:*:*:*:*:* (and previous) *cpe:2.3:a:embedthis:appweb:5.2.0:*:*:*:*:*:*:* *cpe:2.3:a:embedthis:appweb:5.1.0:*:*:*:*:*:*:* *cpe:2.3:a:embedthis:appweb:5.0.0:*:*:*:*:*:*:*
    Changed Reference Type http://packetstormsecurity.com/files/131157/Appweb-Web-Server-Denial-Of-Service.html No Types Assigned http://packetstormsecurity.com/files/131157/Appweb-Web-Server-Denial-Of-Service.html Third Party Advisory, VDB Entry, Exploit
    Changed Reference Type http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html No Types Assigned http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html Third Party Advisory, Patch
    Changed Reference Type http://seclists.org/fulldisclosure/2015/Apr/19 No Types Assigned http://seclists.org/fulldisclosure/2015/Apr/19 Third Party Advisory, VDB Entry
    Changed Reference Type https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348 No Types Assigned https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348 Issue Tracking
    Changed Reference Type http://seclists.org/fulldisclosure/2015/Mar/158 Exploit http://seclists.org/fulldisclosure/2015/Mar/158 Third Party Advisory, VDB Entry, Exploit
  • CVE Modified by [email protected]

    Jul. 22, 2016

    Action Type Old Value New Value
    Added Reference http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
  • CVE Modified by [email protected]

    Apr. 18, 2015

    Action Type Old Value New Value
    Added Reference http://seclists.org/fulldisclosure/2015/Apr/19
  • CVE Modified by [email protected]

    Apr. 03, 2015

    Action Type Old Value New Value
    Added Reference http://packetstormsecurity.com/files/131157/Appweb-Web-Server-Denial-Of-Service.html
  • Modified Analysis by [email protected]

    Apr. 01, 2015

    Action Type Old Value New Value
    Added Evaluator Description <a href="http://cwe.mitre.org/data/definitions/476.html">CWE-476: NULL Pointer Dereference</a>
    Added CPE Configuration Configuration 1 OR *cpe:2.3:a:embedthis:appweb:4.6.5:*:*:*:*:*:*:* (and previous) *cpe:2.3:a:embedthis:appweb:5.2.0:*:*:*:*:*:*:* *cpe:2.3:a:embedthis:appweb:5.1.0:*:*:*:*:*:*:* *cpe:2.3:a:embedthis:appweb:5.0.0:*:*:*:*:*:*:*
    Added CVSS V2 (AV:N/AC:L/Au:N/C:N/I:N/A:P)
    Changed Reference Type http://seclists.org/fulldisclosure/2015/Mar/158 No Types Assigned http://seclists.org/fulldisclosure/2015/Mar/158 Exploit
    Changed Reference Type https://github.com/embedthis/appweb/issues/413 No Types Assigned https://github.com/embedthis/appweb/issues/413 Exploit
    Changed Reference Type http://www.securityfocus.com/archive/1/archive/1/535028/100/0/threaded No Types Assigned http://www.securityfocus.com/archive/1/archive/1/535028/100/0/threaded Exploit
    Added CWE NVD-CWE-Other
  • Initial Analysis by [email protected]

    Mar. 31, 2015

    Action Type Old Value New Value
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2014-9708 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2014-9708 weaknesses.

Exploit Prediction

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days.

1.66 }} -2.67%

score

0.87267

percentile

CVSS2 - Vulnerability Scoring System
Access Vector
Access Complexity
Authentication
Confidentiality
Integrity
Availability