CVE-2019-0011

EUVD-2019-0818
The Junos OS kernel crashes after processing a specific incoming packet to the out of band management interface (such as fxp0, me0, em0, vme0) destined for another address. By continuously sending this type of packet, an attacker can repeatedly crash the kernel causing a sustained Denial of Service. Affected releases are Juniper Networks Junos OS: 17.2 versions prior to 17.2R1-S7, 17.2R3; 17.3 versions prior to 17.3R3-S3; 17.4 versions prior to 17.4R1-S4, 17.4R2; 17.2X75 versions prior to 17.2X75-D110; 18.1 versions prior to 18.1R2.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
juniperCNA
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 41%
Affected Products (NVD)
VendorProductVersion
juniperjunos
17.2
juniperjunos
17.2:r1
juniperjunos
17.2:r1-s1
juniperjunos
17.2:r1-s2
juniperjunos
17.2:r1-s3
juniperjunos
17.2:r1-s4
juniperjunos
17.2:r1-s5
juniperjunos
17.2:r1-s6
juniperjunos
17.3
juniperjunos
17.3:r1
juniperjunos
17.3:r2
juniperjunos
17.3:r3
juniperjunos
17.3:r3-s1
juniperjunos
17.3:r3-s2
juniperjunos
17.4
juniperjunos
17.4:r1
juniperjunos
17.4:r1-s1
juniperjunos
17.4:r1-s2
juniperjunos
17.4:r1-s3
juniperjunos
17.2x75:x75
juniperjunos
17.2x75:x75
juniperjunos
17.2x75:x75
juniperjunos
17.2x75:x75
juniperjunos
17.2x75:x75
juniperjunos
17.2x75:x75
juniperjunos
17.2x75:x75
juniperjunos
18.1
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/106534
https://kb.juniper.net/JSA10911
http://www.securityfocus.com/bid/106534
https://kb.juniper.net/JSA10911