CVE-2019-0002

Published Jan 15, 2019

Last updated 4 years ago

Overview

Description: On EX2300 and EX3400 series, stateless firewall filter configuration that uses the action 'policer' in combination with other actions might not take effect. When this issue occurs, the output of the command: show pfe filter hw summary will not show the entry for: RACL group Affected releases are Junos OS on EX2300 and EX3400 series: 15.1X53 versions prior to 15.1X53-D590; 18.1 versions prior to 18.1R3; 18.2 versions prior to 18.2R2. This issue affect both IPv4 and IPv6 firewall filter.
Source: sirt@juniper.net
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

CVSS 3.0

Type: Secondary
Base score: 5.8
Impact score: 1.4
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo
sirt@juniper.net: CWE-794

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D58997E6-96B4-4930-A29D-B49D06DFA9D5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d51:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFB887FD-D3FB-439F-9A89-CC367A74DB00"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d52:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDA46912-D173-49C5-A0A1-64BD0889D3A0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d55:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BEE4EE4-18D9-4FA9-9A02-917240B851AA"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d57:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "188FED65-8A81-4BB0-B10B-8CA17B4F71CC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d58:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F03E847-748B-43BD-B6C1-BFDECE99BC3C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1x53:d59:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92E31AF0-83EB-4570-A6DE-4308BE0D3A43"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0DFDD907-5305-4602-8A9C-685AA112C342"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0A756E2-C320-405A-B24F-7C5022649E5A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2EF6F4C1-6A7E-474F-89BC-7A3C50FD8CAC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84F5BCBA-404B-4BC9-B363-CE6D231B0D6D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18A4CA3E-DA61-49CC-8476-3A476CCB2B83"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r2-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7380B3E-09F5-4497-86C6-11EF56BD89F1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8B5BD93-3C11-45D5-ACF0-7C4C01106C8A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "167EEC4F-729E-47C2-B0F8-E8108CE3E985"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r1-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A893CCE5-96B8-44A1-ABEF-6AB9B527B2FB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r1-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42203801-E2E7-4DCF-ABBB-D23A91B2A9FF"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r1-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "238EC996-8E8C-4332-916F-09E54E6EBB9D"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3B3302CB-457F-4BD2-B80B-F70FB4C4542E"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "47DAF5E7-E610-4D74-8573-41C16D642837"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Social media

Risk scores

CVSS 3.1

CVSS 3.0

CVSS 2.0

Weaknesses

Configurations

References