CVE-2020-1651

Published Jul 17, 2020

Last updated 3 years ago

CVSS medium 6.5

Overview

Description: On Juniper Networks MX series, receipt of a stream of specific Layer 2 frames may cause a memory leak resulting in the packet forwarding engine (PFE) on the line card to crash and restart, causing traffic interruption. By continuously sending this stream of specific layer 2 frame, an attacker connected to the same broadcast domain can repeatedly crash the PFE, causing a prolonged Denial of Service (DoS). This issue affects Juniper Networks Junos OS on MX Series: 17.2 versions prior to 17.2R3-S4; 17.2X75 versions prior to 17.2X75-D105.19; 17.3 versions prior to 17.3R3-S7; 17.4 versions prior to 17.4R1-S3, 17.4R2; 18.1 versions prior to 18.1R2. This issue does not affect Juniper Networks Junos OS releases prior to 17.2R1.
Source: sirt@juniper.net
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 3.3
Impact score: 2.9
Exploitability score: 6.5
Vector string: AV:A/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-401
sirt@juniper.net: CWE-19

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCEE8D9C-6D64-4A9B-A74A-57A0BF4086C6"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E889BF9C-BDDF-4A6A-97BB-00A097EF6D91"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8BCF0612-AF16-4925-8E42-77734513F923"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "595987A6-D8CE-41ED-B51C-EF9CD3B47AD0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r1-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B5A2205-C40B-4746-9A23-1973433FF065"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r1-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFA3526C-FF53-4823-B6AC-0BA91BFB532D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r1-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA92B7F8-705B-410F-BDA3-7C28FF51967F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r1-s7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9689695F-53EB-4B35-9072-750E7282B011"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r1-s8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F7CE683-5647-455B-936C-DF0D973A180A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D45F2C3-20FF-4A91-A440-E109B3CCE7C9"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r2-s11:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BA433E05-83F8-410D-AEB3-3A02BAB0BE0B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r2-s6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B87ECEAD-FD18-4252-8D46-F281DD4125AC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r2-s7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6788EE2-B0DA-470E-B72E-E8D5CCFB5259"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FD8A8E1-201B-4E4E-8F69-23856E56AF60"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "897850A3-2A27-483C-8266-E4547F1A4341"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2:r3-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7939BCE6-D4E8-4366-B954-32D77F21A35D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2x75:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B809686-D679-483B-9196-510582F07A7E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2x75:d102:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81332BD3-99F9-4A7C-A04F-1F3A81CA6941"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2x75:d50:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C913A29-64F1-4B2C-A4BC-163891E9A43A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2x75:d70:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD7217ED-631C-4206-9381-18C0BDD69C7D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.2x75:d92:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5DCC950-B6D1-4EF2-87EB-7D152CD9D8CD"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A283D32F-1CAF-4A5A-83E1-585F2801771F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C52E355B-DA7D-4FDE-B2D7-A3C3C9C99918"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69FC46D4-39E2-4E2F-A1D3-1001769A7115"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "32F83E8B-A816-4F26-95F8-F0DA7F3DF426"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C433359-BC8B-4E69-BE74-A31EB148083A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r2-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCA2976C-C84B-40D9-A806-588629BFFB13"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r2-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2C7B980-033E-40AC-98C9-B252733B0F43"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r3:-:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1CAEBD2-2E46-44B5-B1D1-1DDBD450FD27"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "565AE6D8-28A9-4A62-A886-5BAB954695D8"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C366F93-BB30-4144-99AE-40B676977834"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r3-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "488BB10A-1360-42E5-A68D-23D51B332850"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.3:r3-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64988F0A-E02C-455B-99C9-4059C896416F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A00CA6FB-8F28-4171-B510-8DBA351E80C0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "988D317A-0646-491F-9B97-853E8E208276"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "605F1AD7-5B09-44F0-9017-15AB3EEE559C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEDDCD30-2255-4FA9-B3E2-9E88AB6F8D80"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0DFDD907-5305-4602-8A9C-685AA112C342"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0A756E2-C320-405A-B24F-7C5022649E5A"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:mx10:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "52699E2B-450A-431C-81E3-DC4483C8B4F2"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx10000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D97AF6F8-3D50-4D35-BCB1-54E3BEC69B9F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx10003:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D5627740-42E3-4FB1-B8B9-0B768AFFA1EC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx104:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F72C850A-0530-4DB7-A553-7E19F82122B5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx150:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7FE2089C-F341-4DC1-B76D-633BC699306D"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx2008:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2FEF33EB-B2E0-42EF-A1BB-D41021B6D08F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx2010:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "27175D9A-CA2C-4218-8042-835E25DFCA43"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx2020:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "00C7FC57-8ACF-45AA-A227-7E3B350FD24F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx204:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2754C2DF-DF6E-4109-9463-38B4E0465B77"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx240:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4A26704-A6A4-4C4F-9E12-A0A0259491EF"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx40:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C982A2FF-A1F9-4830-BAB6-77CFCE1F093F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx480:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "104858BD-D31D-40E0-8524-2EC311F10EAC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx5:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3B557965-0040-4048-B56C-F564FF28635B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx80:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EB875EBD-A3CD-4466-B2A3-39D47FF94592"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx960:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B5E08E1E-0FE4-4294-9497-BBFFECA2A220"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References