Overview
- Description
- A memory leak vulnerability in the of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by sending specific commands from a peered BGP host and having those BGP states delivered to the vulnerable device. This issue affects: Juniper Networks Junos OS: 18.1 versions prior to 18.1R2-S4, 18.1R3-S1; 18.1X75 all versions. Versions before 18.1R1 are not affected.
- Source
- sirt@juniper.net
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:juniper:junos:18.1:r2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2EF6F4C1-6A7E-474F-89BC-7A3C50FD8CAC"
},
{
"criteria": "cpe:2.3:o:juniper:junos:18.1:r2-s1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "84F5BCBA-404B-4BC9-B363-CE6D231B0D6D"
},
{
"criteria": "cpe:2.3:o:juniper:junos:18.1:r2-s2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "18A4CA3E-DA61-49CC-8476-3A476CCB2B83"
},
{
"criteria": "cpe:2.3:o:juniper:junos:18.1:r3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "658841A9-BEC9-433E-81D0-47DE82887C4F"
},
{
"criteria": "cpe:2.3:o:juniper:junos:18.1x75:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25D06112-086E-4C26-B2C1-D83F45B5BF10"
},
{
"criteria": "cpe:2.3:o:juniper:junos:18.1x75:d10:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3EE4205-D7F6-4C5A-A245-22510C003921"
}
],
"operator": "OR"
}
]
}
]