Unrated severityNVD Advisory· Published Jul 11, 2013· Updated Apr 29, 2026

CVE-2013-4685

Description

Buffer overflow in flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7, 12.1 before 12.1R6, and 12.1X44 before 12.1X44-D15 on SRX devices, when Captive Portal is enabled with the UAC enforcer role, allows remote attackers to execute arbitrary code via crafted HTTP requests, aka PR 849100.

Affected products

Juniper Networks/Srx100
cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*
Juniper Networks/Srx110
cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*
Juniper Networks/Srx1400
cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*
Juniper Networks/Srx210
cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*
Juniper Networks/Srx220
cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*
Juniper Networks/Srx240
cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*
Juniper Networks/Srx3400
cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*
Juniper Networks/Srx3600
cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*
Juniper Networks/Srx550
cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*
Juniper Networks/Srx5600
cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*
Juniper Networks/Srx5800
cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*
Juniper Networks/Srx650
cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*
Juniper Networks/Junos4 versions
cpe:2.3:o:juniper:junos:10.4:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:juniper:junos:10.4:*:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:11.4:*:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1:*:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x44:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kb.juniper.net/JSA10574nvdVendor Advisory
osvdb.org/95108nvd
www.securityfocus.com/bid/61125nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000