CVE-2018-0060

Published Oct 10, 2018
Last updated 4 days ago
CVSS medium 5.3
Overview

Description: An improper input validation weakness in the device control daemon process (dcd) of Juniper Networks Junos OS allows an attacker to cause a Denial of Service to the dcd process and interfaces and connected clients when the Junos device is requesting an IP address for itself. Junos devices are not vulnerable to this issue when not configured to use DHCP. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D40 on SRX Series; 12.3X48 versions prior to 12.3X48-D20 on SRX Series; 14.1X53 versions prior to 14.1X53-D40 on EX2200/VC, EX3200, EX3300/VC, EX4200, EX4300, EX4550/VC, EX4600, EX6200, EX8200/VC (XRE), QFX3500, QFX3600, QFX5100; 15.1X49 versions prior to 15.1X49-D20 on SRX Series; 15.1X53 versions prior to 15.1X53-D68 on QFX10000 Series; 15.1X53 versions prior to 15.1X53-D235 on QFX5200/QFX5110; 15.1X53 versions prior to 15.1X53-D495 on NFX150, NFX250; 15.1X53 versions prior to 15.1X53-D590 on EX2300/EX3400; 15.1 versions prior to 15.1R7-S2.
Source: sirt@juniper.net
NVD status: Modified
Risk scores

CVSS 3.0

Type: Primary
Base score: 5.9
Impact score: 3.6
Exploitability score: 2.2
Vector string: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM
CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:P
Weaknesses

nvd@nist.gov: CWE-20
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFB89F64-16BB-4A14-9084-B338668D7FF1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A71742CF-50B1-44BB-AB7B-27E5DCC9CF70"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FD4237A-C257-4D8A-ABC4-9B2160530A4E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A449C87-C5C3-48FE-9E46-64ED5DD5F193"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4B6215F-76BF-473F-B325-0975B0EB101E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1C4A10C-49A3-4103-9E56-F881113BC5D7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d35:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50E7FD07-A309-48EC-A520-C7F0FA35865C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d40:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F868948A-04D7-473B-971F-721302653633"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.1x46:d45:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "830A9EBA-88F1-4277-B98F-75AC52A60824"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7192552C-7D4A-4D95-BA79-CDF465E27D37"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B7066A4-CD05-4E1A-89E8-71B4CB92CFF3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4AC2E1E-74FB-4DA3-8292-B2079F83FF54"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FF83BD0-3B28-481E-8C8F-09ECDA493DA4"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD0952C4-FFCC-4A78-ADFC-289BD6E269DB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C56E6C3-BBB6-4853-91D9-99C7676D0CD4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E0ECBD8-3D66-49DA-A557-5695159F0C06"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EAA2998-A0D6-4818-9E7C-25E8099403E7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D4ADFC5-D4B8-4A68-95D8-8ADF92C1CFE8"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71D211B9-B2FE-4324-AAEE-8825D5238E48"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0D3EA8F-4D30-4383-AF2F-0FB6D822D0F3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E6CD065-EC06-4846-BD2A-D3CA7866070F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7620D01-1A6B-490F-857E-0D803E0AEE56"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:r6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "120EA9E3-788B-4CFD-A74F-17111FFD0131"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20DABA6A-FA7A-4289-8C6A-2B93689A5440"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D90D8985-34EF-44CC-A9A7-CB0FD22676F2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d110:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3B2DA4D-5E5D-4E09-BE4D-5B3371703D8F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18468579-0195-4DDE-BAA5-4BE4068F3A69"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B71FB14A-67D4-4EDD-BB32-07764F5AFA6E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D58997E6-96B4-4930-A29D-B49D06DFA9D5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d51:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFB887FD-D3FB-439F-9A89-CC367A74DB00"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d52:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDA46912-D173-49C5-A0A1-64BD0889D3A0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d55:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BEE4EE4-18D9-4FA9-9A02-917240B851AA"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d57:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "188FED65-8A81-4BB0-B10B-8CA17B4F71CC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d58:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F03E847-748B-43BD-B6C1-BFDECE99BC3C"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3B3302CB-457F-4BD2-B80B-F70FB4C4542E"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "47DAF5E7-E610-4D74-8573-41C16D642837"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B71FB14A-67D4-4EDD-BB32-07764F5AFA6E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E87C765-8D68-404A-AC71-3F22A7260E8C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E3B807C-196D-42B8-9042-7582A1366772"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83FEEE8F-9279-46F2-BAF9-A60537020C61"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F294E43-73FA-4EF3-90F2-EE29C56D6573"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EDDE1048-BFEA-4A3E-8270-27C538A68837"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC517CD0-FF35-498F-AD33-683B43CA3829"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d34:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53F7E1C5-BFA9-426C-9F95-3EA5DB458C7E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D58997E6-96B4-4930-A29D-B49D06DFA9D5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d60:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "962CCED8-E321-4878-9BE6-0DC33778559A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d61:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2B08B97A-5D4D-405B-A1C4-9E327E4EED35"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d62:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "738C1061-E8B8-4924-AFE9-5E59F22CA4A8"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d63:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9071DC8C-D0AA-448E-82BF-7C801199193F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d64:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "395CC50B-9042-4B12-9A1C-A8D5D571DC25"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d65:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0396190-54A5-4F11-8530-B5EC7BCBC85A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d66:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E56CF063-0CB3-4BD6-978B-B9D7C0C8C4AF"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:qfx10000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5AF2039C-E08C-472F-82E6-DAD3F94724B5"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B71FB14A-67D4-4EDD-BB32-07764F5AFA6E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d210:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBD36C0D-0F44-4349-968D-4CD60F281D84"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d230:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3E364FE2-5FB1-4E14-8DF5-CA21F4BFBBC5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d231:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F22C4C2-20E0-428F-A9BF-37E8BD63A9E3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d232:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71334963-7BF1-49DB-84E6-D6F2A927458B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F294E43-73FA-4EF3-90F2-EE29C56D6573"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "79A8847B-4F98-4949-8639-5CD2B411D10F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EDC5478F-A047-4F6D-BB11-0077A74C0174"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B71FB14A-67D4-4EDD-BB32-07764F5AFA6E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d40:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2B5ED13-F998-447C-8FEA-047FE9FE2F4B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d45:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65F3CD2A-D5E1-4EFF-9013-6D81B396F765"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d490:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5582D0E6-292E-487B-9DAC-143D5D1C0D54"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:nfx_series:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5F04DBDB-7DCD-49D6-B735-D97FC0947A7A"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C7FCCC1-B151-465A-8327-26DB5DC074F0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09771B8F-8B2A-4E8B-B4D3-80677697FCF3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55E2F909-E1CC-45AA-ABA9-58178B751808"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d16:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E1AA12C5-4520-4F79-80BE-66112F7AFC2A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "807C8110-5CC2-45F0-B094-BBF9C0B63BDD"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d26:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "547E5737-D385-49B9-A69F-A3B185A34116"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d27:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2ED257ED-A56B-48A6-8568-65F36FFFC753"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74500FC7-EE82-4AA8-9A5F-15DE4835E337"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:14.1x53:d35:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAE14AE1-6756-4831-A8D5-A6D07DB24AF2"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:ex3200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4C7A20FC-A19F-4881-A0E8-C440E9FE60D0"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "53269C69-3D1E-4F05-8EF6-81743D7A699E"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E594D6DC-87F6-40D2-8268-ED6021462168"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D1BB20B5-EA30-4E8E-9055-2E629648436A"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex6200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F6CC1C89-B37F-4C5F-9F79-12997C79711D"
          },
          {
            "criteria": "cpe:2.3:h:juniper:qfx3500:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9A336BD3-4AB0-4E9E-8AD5-E6413A5A53FC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:qfx3600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7F4D44B0-E6CE-4380-8712-AC832DBCB424"
          },
          {
            "criteria": "cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E974B4BC-64C5-4BB6-AF31-D46AF3763416"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References
