CVE-2019-0007

Published Jan 15, 2019

Last updated 4 years ago

CVSS critical 10.0

Overview

Description: The vMX Series software uses a predictable IP ID Sequence Number. This leaves the system as well as clients connecting through the device susceptible to a family of attacks which rely on the use of predictable IP ID sequence numbers as their base method of attack. This issue was found during internal product security testing. Affected releases are Juniper Networks Junos OS: 15.1 versions prior to 15.1F5 on vMX Series.
Source: sirt@juniper.net
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 10
Impact score: 6
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Severity: CRITICAL

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-330

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD0952C4-FFCC-4A78-ADFC-289BD6E269DB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C56F5C48-BA48-4EE1-88BE-782B3CFB3B90"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C56E6C3-BBB6-4853-91D9-99C7676D0CD4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E0ECBD8-3D66-49DA-A557-5695159F0C06"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EAA2998-A0D6-4818-9E7C-25E8099403E7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:15.1:f5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D4ADFC5-D4B8-4A68-95D8-8ADF92C1CFE8"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:mx10:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "52699E2B-450A-431C-81E3-DC4483C8B4F2"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx10003:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D5627740-42E3-4FB1-B8B9-0B768AFFA1EC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx10008:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D6F0EA2F-BF7E-45D0-B2B4-8A7B67A9475A"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx104:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F72C850A-0530-4DB7-A553-7E19F82122B5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx150:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7FE2089C-F341-4DC1-B76D-633BC699306D"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx2008:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2FEF33EB-B2E0-42EF-A1BB-D41021B6D08F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx2010:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "27175D9A-CA2C-4218-8042-835E25DFCA43"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx2020:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "00C7FC57-8ACF-45AA-A227-7E3B350FD24F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx204:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2754C2DF-DF6E-4109-9463-38B4E0465B77"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx240:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4A26704-A6A4-4C4F-9E12-A0A0259491EF"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx40:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C982A2FF-A1F9-4830-BAB6-77CFCE1F093F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx480:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "104858BD-D31D-40E0-8524-2EC311F10EAC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx5:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3B557965-0040-4048-B56C-F564FF28635B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx80:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EB875EBD-A3CD-4466-B2A3-39D47FF94592"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx960:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B5E08E1E-0FE4-4294-9497-BBFFECA2A220"
          },
          {
            "criteria": "cpe:2.3:h:juniper:vmx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7C4940BB-3715-4FAD-89FE-D876F957A098"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References