CVE-2019-0009

On EX2300 and EX3400 series, high disk I/O operations may disrupt the communication between the routing engine (RE) and the packet forwarding engine (PFE). In a virtual chassis (VC) deployment, this issue disrupts communication between the VC members. This issue does not affect other Junos platforms. Affected releases are Junos OS on EX2300 and EX3400 series: 15.1X53 versions prior to 15.1X53-D590; 18.1 versions prior to 18.1R2-S2, 18.1R3; 18.2 versions prior to 18.2R2.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
juniperCNA
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
VendorProductVersion
juniperjunos
15.1x53:x53
juniperjunos
15.1x53:x53
juniperjunos
15.1x53:x53
juniperjunos
15.1x53:x53
juniperjunos
15.1x53:x53
juniperjunos
15.1x53:x53
juniperjunos
15.1x53:x53
juniperjunos
18.1
juniperjunos
18.1:r1
juniperjunos
18.2
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/106548
https://kb.juniper.net/JSA10909
http://www.securityfocus.com/bid/106548
https://kb.juniper.net/JSA10909