CVE-2013-4685

EPSS 7.49% · P92 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2013-4685

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Buffer overflow in flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R7, 12.1 before 12.1R6, and 12.1X44 before 12.1X44-D15 on SRX devices, when Captive Portal is enabled with the UAC enforcer role, allows remote attackers to execute arbitrary code via crafted HTTP requests, aka PR 849100.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

SRX系列服务器网关设备Juniper Junos flowd 缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Juniper Networks Juniper Junos是美国瞻博网络（Juniper Networks）公司的一套专用于该公司的硬件系统的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 SRX系列服务器网关设备上的Juniper Junos 10.4S14之前的10.4版本，11.4R7之前的11.4版本，12.1R6之前的12.1版本，12.1X44-D15之前的12.1X44版本中的flowd（ Flow守护进程）中存在缓冲区溢出漏洞。当SRX系列设备通过UAC（统一权限控制）

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2013-4685

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2013-4685

请登录查看更多情报信息。

🔗 http://kb.juniper.net/JSA10574x_refsource_CONFIRM
🔗 http://www.securityfocus.com/bid/61125vdb-entryx_refsource_BID
🔗 http://osvdb.org/95108vdb-entryx_refsource_OSVDB
https://nvd.nist.gov/vuln/detail/CVE-2013-4685

Same Patch Batch · n/a · 2013-07-11 · 10 CVEs total

CVE-2013-1768		Apache OpenJPA Object Deserialization 任意文件创建或重写漏洞
CVE-2013-1777		Apache Geronimo RMI Classloader 安全绕过漏洞
CVE-2013-3418		Cisco Unified Communications Domain Manager 拒绝服务漏洞
CVE-2013-3419		Cisco Unified MeetingPlace Web Conferencing 跨站脚本漏洞
CVE-2013-4684		SRX系列服务器网关设备Juniper Junos flowd 拒绝服务漏洞
CVE-2013-4686		Juniper Junos内核拒绝服务漏洞
CVE-2013-4687		SRX系列服务器网关设备Juniper Junos 拒绝服务漏洞
CVE-2013-4688		SRX系列服务器网关设备Juniper Junos flowd 拒绝服务漏洞
CVE-2013-4690		Juniper Junos 资源管理错误漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2013-4685

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2013-4685

I. Basic Information for CVE-2013-4685

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2013-4685

III. Intelligence Information for CVE-2013-4685

Same Patch Batch · n/a · 2013-07-11 · 10 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2013-4685

Leave a comment