CVE-2014-3812
Summary
| CVE | CVE-2014-3812 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2014-06-13 14:55:00 UTC |
| Updated | 2014-06-16 13:26:00 UTC |
| Description | The Juniper Junos Pulse Secure Access Service (SSL VPN) devices with IVE OS before 7.4r5 and 8.x before 8.0r1 and Junos Pulse Access Control Service (UAC) before 4.4r5 and 5.x before 5.0r1 enable cipher suites with weak encryption algorithms, which make it easier for remote attackers to obtain sensitive information by sniffing the network. |
Risk And Classification
Problem Types: CWE-310
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Juniper | Fips Infranet Controller 6500 | - | All | All | All |
| Hardware | Juniper | Fips Infranet Controller 6500 | - | All | All | All |
| Hardware | Juniper | Fips Secure Access 4000 | - | All | All | All |
| Hardware | Juniper | Fips Secure Access 4000 | - | All | All | All |
| Hardware | Juniper | Fips Secure Access 4500 | - | All | All | All |
| Hardware | Juniper | Fips Secure Access 4500 | - | All | All | All |
| Hardware | Juniper | Fips Secure Access 6000 | - | All | All | All |
| Hardware | Juniper | Fips Secure Access 6000 | - | All | All | All |
| Hardware | Juniper | Fips Secure Access 6500 | - | All | All | All |
| Hardware | Juniper | Fips Secure Access 6500 | - | All | All | All |
| Hardware | Juniper | Infranet Controller 4000 | - | All | All | All |
| Hardware | Juniper | Infranet Controller 4000 | - | All | All | All |
| Hardware | Juniper | Infranet Controller 4500 | - | All | All | All |
| Hardware | Juniper | Infranet Controller 4500 | - | All | All | All |
| Hardware | Juniper | Infranet Controller 6000 | - | All | All | All |
| Hardware | Juniper | Infranet Controller 6000 | - | All | All | All |
| Hardware | Juniper | Infranet Controller 6500 | - | All | All | All |
| Hardware | Juniper | Infranet Controller 6500 | - | All | All | All |
| Operating System | Juniper | Ive Os | 7.4 | All | All | All |
| Operating System | Juniper | Ive Os | 8.0 | All | All | All |
| Operating System | Juniper | Ive Os | 7.4 | All | All | All |
| Operating System | Juniper | Ive Os | 8.0 | All | All | All |
| Hardware | Juniper | Mag2600 Gateway | - | All | All | All |
| Hardware | Juniper | Mag2600 Gateway | - | All | All | All |
| Hardware | Juniper | Mag4610 Gateway | - | All | All | All |
| Hardware | Juniper | Mag4610 Gateway | - | All | All | All |
| Hardware | Juniper | Mag6610 Gateway | - | All | All | All |
| Hardware | Juniper | Mag6610 Gateway | - | All | All | All |
| Hardware | Juniper | Mag6611 Gateway | - | All | All | All |
| Hardware | Juniper | Mag6611 Gateway | - | All | All | All |
| Hardware | Juniper | Secure Access 2500 | - | All | All | All |
| Hardware | Juniper | Secure Access 2500 | - | All | All | All |
| Hardware | Juniper | Secure Access 4500 | - | All | All | All |
| Hardware | Juniper | Secure Access 4500 | - | All | All | All |
| Hardware | Juniper | Secure Access 700 | - | All | All | All |
| Hardware | Juniper | Secure Access 700 | - | All | All | All |
| Operating System | Juniper | Unified Access Control Software | 4.4 | All | All | All |
| Operating System | Juniper | Unified Access Control Software | 5.0 | All | All | All |
| Operating System | Juniper | Unified Access Control Software | 4.4 | All | All | All |
| Operating System | Juniper | Unified Access Control Software | 5.0 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| - Juniper Networks | CONFIRM | kb.juniper.net | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.