CVE-2019-0010
Published Jan 15, 2019
Last updated 4 years ago
Overview
- Description
- An SRX Series Service Gateway configured for Unified Threat Management (UTM) may experience a system crash with the error message "mbuf exceed" -- an indication of memory buffer exhaustion -- due to the receipt of crafted HTTP traffic. Each crafted HTTP packet inspected by UTM consumes mbufs which can be identified through the following log messages: all_logs.0:Jun 8 03:25:03 srx1 node0.fpc4 : SPU3 jmpi mbuf stall 50%. all_logs.0:Jun 8 03:25:13 srx1 node0.fpc4 : SPU3 jmpi mbuf stall 51%. all_logs.0:Jun 8 03:25:24 srx1 node0.fpc4 : SPU3 jmpi mbuf stall 52%. ... Eventually the system runs out of mbufs and the system crashes (fails over) with the error "mbuf exceed". This issue only occurs when HTTP AV inspection is configured. Devices configured for Web Filtering alone are unaffected by this issue. Affected releases are Junos OS on SRX Series: 12.1X46 versions prior to 12.1X46-D81; 12.3X48 versions prior to 12.3X48-D77; 15.1X49 versions prior to 15.1X49-D101, 15.1X49-D110.
- Source
- sirt@juniper.net
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- CWE-770
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CFB89F64-16BB-4A14-9084-B338668D7FF1"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A71742CF-50B1-44BB-AB7B-27E5DCC9CF70"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4FD4237A-C257-4D8A-ABC4-9B2160530A4E"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A449C87-C5C3-48FE-9E46-64ED5DD5F193"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F4B6215F-76BF-473F-B325-0975B0EB101E"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A1C4A10C-49A3-4103-9E56-F881113BC5D7"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d35:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "50E7FD07-A309-48EC-A520-C7F0FA35865C"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d40:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F868948A-04D7-473B-971F-721302653633"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d45:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "830A9EBA-88F1-4277-B98F-75AC52A60824"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d55:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9ACD0C03-ACD9-4D47-B3EE-1D8753FF5A83"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.1x46:d60:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0DD32D8A-7531-4691-B45D-9EACC69A23D6"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "561C1113-3D59-4DD9-ADA7-3C9ECC4632EC"
},
{
"criteria": "cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "78C6D8A0-92D3-4FD3-BCC1-CC7C87B76317"
},
{
"criteria": "cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "927EAB8B-EC3B-4B12-85B9-5517EBA49A30"
},
{
"criteria": "cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "CD647C15-A686-4C8F-A766-BC29404C0FED"
},
{
"criteria": "cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "45AB1622-1AED-4CD7-98F1-67779CDFC321"
},
{
"criteria": "cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "89276D88-3B8D-4168-A2CD-0920297485F2"
},
{
"criteria": "cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "746C3882-2A5B-4215-B259-EB1FD60C513D"
},
{
"criteria": "cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "DDE64EC0-7E42-43AF-A8FA-1A233BD3E3BC"
},
{
"criteria": "cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2FDDC897-747F-44DD-9599-7266F9B5B7B1"
},
{
"criteria": "cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "62FC145A-D477-4C86-89E7-F70F52773801"
},
{
"criteria": "cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "68CA098D-CBE4-4E62-9EC0-43E1B6098710"
},
{
"criteria": "cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "66F474D4-79B6-4525-983C-9A9011BD958B"
},
{
"criteria": "cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8AA424D4-4DBF-4E8C-96B8-E37741B5403E"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B7066A4-CD05-4E1A-89E8-71B4CB92CFF3"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4AC2E1E-74FB-4DA3-8292-B2079F83FF54"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E296274-AFC1-4F56-A4B3-827C2E0BC9D5"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d30:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3C82799B-BD25-4359-9E3D-4D7CA7367525"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d35:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "094485FF-960C-4533-A2AF-6C4D420D260D"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d40:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F8BE3661-1DE5-4F57-9384-68C1B34F6812"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d45:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B45E8A14-E7F4-41EB-9BFA-7A19E35D11FE"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d50:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C6C694C6-C58C-4513-91E8-6CC22A2386E3"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d55:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B65EF51-ED97-4973-94C4-8F66C553F190"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d60:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9EE7C08A-2A4B-4A84-AD95-A890913E2EE3"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d65:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "44C61900-680C-4C74-8B96-ACC93FE9465E"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d70:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B6C38637-ABE0-419A-A053-CBE076766551"
},
{
"criteria": "cpe:2.3:o:juniper:junos:12.3x48:d75:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1F87EF0D-E609-4D4A-B228-CEF05C753E68"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "561C1113-3D59-4DD9-ADA7-3C9ECC4632EC"
},
{
"criteria": "cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "78C6D8A0-92D3-4FD3-BCC1-CC7C87B76317"
},
{
"criteria": "cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "927EAB8B-EC3B-4B12-85B9-5517EBA49A30"
},
{
"criteria": "cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "CD647C15-A686-4C8F-A766-BC29404C0FED"
},
{
"criteria": "cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "45AB1622-1AED-4CD7-98F1-67779CDFC321"
},
{
"criteria": "cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "89276D88-3B8D-4168-A2CD-0920297485F2"
},
{
"criteria": "cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "746C3882-2A5B-4215-B259-EB1FD60C513D"
},
{
"criteria": "cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "DDE64EC0-7E42-43AF-A8FA-1A233BD3E3BC"
},
{
"criteria": "cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2FDDC897-747F-44DD-9599-7266F9B5B7B1"
},
{
"criteria": "cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "62FC145A-D477-4C86-89E7-F70F52773801"
},
{
"criteria": "cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "68CA098D-CBE4-4E62-9EC0-43E1B6098710"
},
{
"criteria": "cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "66F474D4-79B6-4525-983C-9A9011BD958B"
},
{
"criteria": "cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8AA424D4-4DBF-4E8C-96B8-E37741B5403E"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D90D8985-34EF-44CC-A9A7-CB0FD22676F2"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d100:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "856A5668-FA4F-44E9-A3F0-BE4979F631E2"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "18468579-0195-4DDE-BAA5-4BE4068F3A69"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d30:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E5FAA97-171F-4DB9-B78E-6E1A5F34336A"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d35:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "870244F3-1C05-4F10-A205-5189BB860F46"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d40:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "235EE40B-AA15-4F39-8087-A051F4F70995"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d45:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "17330544-3AFC-463E-A146-2840A8AE17D2"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d50:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8ABA301F-7866-42A5-8391-E07BEAFF06FA"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d55:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "884E4A85-ED42-4391-9FDD-9052F957743A"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d60:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1901864B-688B-4352-A587-4B96B4E49FB1"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d65:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "78F53FBF-C6D8-4AE5-87EC-9D9F88DCEFB9"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d70:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1B6670FB-9F5A-469B-97F2-074C28572065"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d75:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "71198992-83AA-4E28-BA7D-A3C1897B5E2B"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d80:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4323D874-C317-4D76-8E2D-C82376D84CBE"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:d90:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F56067DA-EBA9-481A-B60B-52148584EFBD"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "561C1113-3D59-4DD9-ADA7-3C9ECC4632EC"
},
{
"criteria": "cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "78C6D8A0-92D3-4FD3-BCC1-CC7C87B76317"
},
{
"criteria": "cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "927EAB8B-EC3B-4B12-85B9-5517EBA49A30"
},
{
"criteria": "cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "CD647C15-A686-4C8F-A766-BC29404C0FED"
},
{
"criteria": "cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "45AB1622-1AED-4CD7-98F1-67779CDFC321"
},
{
"criteria": "cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "89276D88-3B8D-4168-A2CD-0920297485F2"
},
{
"criteria": "cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "746C3882-2A5B-4215-B259-EB1FD60C513D"
},
{
"criteria": "cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "DDE64EC0-7E42-43AF-A8FA-1A233BD3E3BC"
},
{
"criteria": "cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "2FDDC897-747F-44DD-9599-7266F9B5B7B1"
},
{
"criteria": "cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "62FC145A-D477-4C86-89E7-F70F52773801"
},
{
"criteria": "cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "68CA098D-CBE4-4E62-9EC0-43E1B6098710"
},
{
"criteria": "cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "66F474D4-79B6-4525-983C-9A9011BD958B"
},
{
"criteria": "cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8AA424D4-4DBF-4E8C-96B8-E37741B5403E"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]