CVE-2020-1650

Published Jul 17, 2020

Last updated 3 years ago

CVSS high 7.5

Overview

Description: On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending these specific packets, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a prolonged Denial of Service. This issue affects MX Series devices using MS-PIC, MS-MIC or MS-MPC service cards with any service configured. This issue affects Juniper Networks Junos OS on MX Series: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 and the subsequent SRs (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 and the SRs based on 18.3R2; 18.4R2 and the SRs based on 18.4R2; 19.1R1 and the SRs based on 19.1R1; 19.2R1 and the SRs based on 19.2R1; 19.3R1 and the SRs based on 19.3R1.
Source: sirt@juniper.net
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r2-s7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6788EE2-B0DA-470E-B72E-E8D5CCFB5259"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2B482BCC-1F0C-47AA-B63B-1B39CEF7B2C0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A636F9F2-2DA7-4A27-AD80-FD1B34DFCA94"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4EC7D216-D8F3-4ABD-97C9-4C9FB6DF64FF"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E327643-D8D8-4EFA-9F38-BA862A919501"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1BC6CE1C-9DD8-429E-BDC2-251D8C8674E3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s9:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63B00B4F-3E65-4CB2-807D-43908B570AE6"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8732E25A-9073-4C7B-9E89-C02368728EB4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0A756E2-C320-405A-B24F-7C5022649E5A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2EF6F4C1-6A7E-474F-89BC-7A3C50FD8CAC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A14CE132-C56B-43D8-A248-AB6A2D1A7B6C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73978DD8-BD92-4872-8F35-AF2B9BCA1ECB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "678F57D1-2595-4AF3-BB87-AF2E1FE3CBB9"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7988CE92-71D2-4EEC-B596-4A60E2C1136A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "330D176F-8DAD-440C-A623-44FA233FAB01"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8CC5EAB8-1364-4325-9F01-BE7CC479C29D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "167EEC4F-729E-47C2-B0F8-E8108CE3E985"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r1-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A893CCE5-96B8-44A1-ABEF-6AB9B527B2FB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r1-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42203801-E2E7-4DCF-ABBB-D23A91B2A9FF"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F711936-33A1-47FC-A6A0-A63088915815"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B670F988-78F2-4BC6-B7FC-E34C280F67DC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F9451C7-6466-4AC9-9A7F-90A2817AED6C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.2:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "871CA952-C5EC-4A25-8EF0-C2EC484F7DE9"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7A3FBD3-5399-42A9-9BD9-E3C981CBD6DB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4EBD361C-8B4D-43EF-8B82-9FE165D8206E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E7539C4-6208-43EB-9A0B-4852D0CE0FA1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35299B02-DC75-458D-B86D-8A0DB95B06AA"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D59D7A31-128B-4034-862B-8EF3CE3EE949"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C5E097B-B79E-4E6A-9291-C8CB9674FED5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "819FA3ED-F934-4B20-BC0E-D638ACCB7787"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D7D773A-4988-4D7C-A105-1885EBE14426"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5332B70A-F6B0-4C3B-90E2-5CBFB3326126"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81439FE8-5405-45C2-BC04-9823D2009A77"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E506138D-043E-485D-B485-94A2AB75F8E7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EF3C901-3599-463F-BEFB-8858768DC195"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CA3060F-1800-4A06-A453-FB8CE4B65312"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A5B337A-727C-4767-AD7B-E0F7F99EB46F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16FDE60B-7A99-4683-BC14-530B5B005F8B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.3:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8110DA9-54B1-43CF-AACB-76EABE0C9EF6"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.3:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11B5CC5A-1959-4113-BFCF-E4BA63D918C1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:mx10:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "52699E2B-450A-431C-81E3-DC4483C8B4F2"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx10000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D97AF6F8-3D50-4D35-BCB1-54E3BEC69B9F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx10003:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D5627740-42E3-4FB1-B8B9-0B768AFFA1EC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx104:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F72C850A-0530-4DB7-A553-7E19F82122B5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx150:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7FE2089C-F341-4DC1-B76D-633BC699306D"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx2008:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2FEF33EB-B2E0-42EF-A1BB-D41021B6D08F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx2010:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "27175D9A-CA2C-4218-8042-835E25DFCA43"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx2020:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "00C7FC57-8ACF-45AA-A227-7E3B350FD24F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx204:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2754C2DF-DF6E-4109-9463-38B4E0465B77"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx240:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4A26704-A6A4-4C4F-9E12-A0A0259491EF"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx40:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C982A2FF-A1F9-4830-BAB6-77CFCE1F093F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx480:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "104858BD-D31D-40E0-8524-2EC311F10EAC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx5:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3B557965-0040-4048-B56C-F564FF28635B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx80:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EB875EBD-A3CD-4466-B2A3-39D47FF94592"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx960:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B5E08E1E-0FE4-4294-9497-BBFFECA2A220"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References