CVE-2018-0004

Published Jan 10, 2018

Last updated 5 years ago

CVSS medium 6.5

Overview

Description: A sustained sequence of different types of normal transit traffic can trigger a high CPU consumption denial of service condition in the Junos OS register and schedule software interrupt handler subsystem when a specific command is issued to the device. This affects one or more threads and conversely one or more running processes running on the system. Once this occurs, the high CPU event(s) affects either or both the forwarding and control plane. As a result of this condition the device can become inaccessible in either or both the control and forwarding plane and stops forwarding traffic until the device is rebooted. The issue will reoccur after reboot upon receiving further transit traffic. Score: 5.7 MEDIUM (CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H) For network designs utilizing layer 3 forwarding agents or other ARP through layer 3 technologies, the score is slightly higher. Score: 6.5 MEDIUM (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H) If the following entry exists in the RE message logs then this may indicate the issue is present. This entry may or may not appear when this issue occurs. /kernel: Expensive timeout(9) function: Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D50; 12.3X48 versions prior to 12.3X48-D30; 12.3R versions prior to 12.3R12-S7; 14.1 versions prior to 14.1R8-S4, 14.1R9; 14.1X53 versions prior to 14.1X53-D30, 14.1X53-D34; 14.2 versions prior to 14.2R8; 15.1 versions prior to 15.1F6, 15.1R3; 15.1X49 versions prior to 15.1X49-D40; 15.1X53 versions prior to 15.1X53-D31, 15.1X53-D33, 15.1X53-D60. No other Juniper Networks products or platforms are affected by this issue.
Source: sirt@juniper.net
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 6.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-400

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFB89F64-16BB-4A14-9084-B338668D7FF1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A71742CF-50B1-44BB-AB7B-27E5DCC9CF70"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FD4237A-C257-4D8A-ABC4-9B2160530A4E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A449C87-C5C3-48FE-9E46-64ED5DD5F193"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4B6215F-76BF-473F-B325-0975B0EB101E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1C4A10C-49A3-4103-9E56-F881113BC5D7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d35:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50E7FD07-A309-48EC-A520-C7F0FA35865C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d40:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F868948A-04D7-473B-971F-721302653633"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d45:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "830A9EBA-88F1-4277-B98F-75AC52A60824"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7192552C-7D4A-4D95-BA79-CDF465E27D37"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B7066A4-CD05-4E1A-89E8-71B4CB92CFF3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4AC2E1E-74FB-4DA3-8292-B2079F83FF54"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FF83BD0-3B28-481E-8C8F-09ECDA493DA4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E296274-AFC1-4F56-A4B3-827C2E0BC9D5"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "371A7DF8-3F4B-439D-8990-D1BC6F0C25C5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r11:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0DD051A-E486-4A9D-A978-A5A980AAF237"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r12:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4ED9ACC-B6BA-4128-8934-759BB9EC904F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7CC3BCFD-2B0F-4994-9FE4-9D37FA85F1E2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6F309FD-0A5A-4C86-B227-B2B511A5CEB4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "960059B5-0701-4B75-AB51-0A430247D9F0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D1DCA52-DA81-495B-B516-5571F01E3B0A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "05E187F6-BACD-4DD5-B393-B2FE4349053A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C240840-A6BC-4E3D-A60D-22F08E67E2B2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC90563F-6BCB-4D77-8FD4-584E3A6C7741"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3:r9:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AD03BA7-D9EC-420F-97C4-383F79D6873F"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6237291A-B861-4D53-B7AA-C53A44B76896"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C778627-820A-48F5-9680-0205D6DB5EB6"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA7F03DC-73A2-4760-B386-2A57E9C97E65"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CA10003-D52B-4110-9D7A-F50895E6BA17"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1:r4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B2D843A-8ADE-4888-8960-B48394DEA1D2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1:r5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BE66516-A06D-4C0F-8346-DFC8865C8FE8"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1:r6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EEBDFC9E-7753-42A8-A5C8-4D40D219F93A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1:r7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25E5D543-D779-482D-AA8A-6E77C1949FBD"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1:r9:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A76DAC5-AEC4-47E8-9876-71EE5BAD73E2"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C7FCCC1-B151-465A-8327-26DB5DC074F0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09771B8F-8B2A-4E8B-B4D3-80677697FCF3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55E2F909-E1CC-45AA-ABA9-58178B751808"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d16:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E1AA12C5-4520-4F79-80BE-66112F7AFC2A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "807C8110-5CC2-45F0-B094-BBF9C0B63BDD"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d26:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "547E5737-D385-49B9-A69F-A3B185A34116"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d27:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2ED257ED-A56B-48A6-8568-65F36FFFC753"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d34:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F0F3845-0966-469E-B6C6-8FA372208733"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D59449C6-5BD5-4C07-AEF6-EEBC70D9C4C7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79149AA0-17D1-4522-894F-C025F7A30FD7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.2:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30726286-7CB1-4E5D-AE44-2B4D84795900"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.2:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33BE028F-2961-414A-9D42-C4861566C2DC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.2:r4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E85AB30C-03FC-44DB-A8AA-B916A905CA66"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.2:r5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D01CA25F-E1E1-4831-8561-D3B0300BF4A7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.2:r6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A117A0D6-6356-49DF-8B21-F6D47C6B8E94"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.2:r7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C31AA11-FA95-4927-9E48-D46BBE4945B1"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD0952C4-FFCC-4A78-ADFC-289BD6E269DB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:a1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83AB8877-3DC0-4B8C-B864-1BF18C368337"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C56F5C48-BA48-4EE1-88BE-782B3CFB3B90"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C56E6C3-BBB6-4853-91D9-99C7676D0CD4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC196685-3B0C-4754-AE6A-6BE456CC6B52"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0146AA9-C513-4871-A62A-52C9F40EB958"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f2-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A18672EF-E33D-4ACE-BB0A-561812F502C7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f2-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEF0E75F-831E-40B8-926D-B2E92A84E31B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E0ECBD8-3D66-49DA-A557-5695159F0C06"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EAA2998-A0D6-4818-9E7C-25E8099403E7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D4ADFC5-D4B8-4A68-95D8-8ADF92C1CFE8"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7620D01-1A6B-490F-857E-0D803E0AEE56"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20DABA6A-FA7A-4289-8C6A-2B93689A5440"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D90D8985-34EF-44CC-A9A7-CB0FD22676F2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18468579-0195-4DDE-BAA5-4BE4068F3A69"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E5FAA97-171F-4DB9-B78E-6E1A5F34336A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d35:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "870244F3-1C05-4F10-A205-5189BB860F46"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B71FB14A-67D4-4EDD-BB32-07764F5AFA6E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E87C765-8D68-404A-AC71-3F22A7260E8C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E3B807C-196D-42B8-9042-7582A1366772"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83FEEE8F-9279-46F2-BAF9-A60537020C61"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d210:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBD36C0D-0F44-4349-968D-4CD60F281D84"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1DD0B95A-7C9F-4A18-9CD8-BA344DEFC9D4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F294E43-73FA-4EF3-90F2-EE29C56D6573"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC517CD0-FF35-498F-AD33-683B43CA3829"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d60:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "962CCED8-E321-4878-9BE6-0DC33778559A"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References