CVE-2021-0206

Published Jan 15, 2021

Last updated 3 months ago

CVSS high 7.5

Overview

Description: A NULL Pointer Dereference vulnerability in Juniper Networks Junos OS allows an attacker to send a specific packet causing the packet forwarding engine (PFE) to crash and restart, resulting in a Denial of Service (DoS). By continuously sending these specific packets, an attacker can repeatedly disable the PFE causing a sustained Denial of Service (DoS). This issue only affects Juniper Networks NFX Series, SRX Series platforms when SSL Proxy is configured. This issue affects Juniper Networks Junos OS on NFX Series and SRX Series: 18.3 versions prior to 18.3R3-S4; 18.4 versions prior to 18.4R3-S1; 19.1 versions prior to 19.1R1-S6, 19.1R2-S2, 19.1R3; 19.2 versions prior to 19.2R1-S2, 19.2R2; 19.3 versions prior to 19.3R2. This issue does not affect Juniper Networks Junos OS versions on NFX Series and SRX Series prior to 18.3R1.
Source: sirt@juniper.net
NVD status: Modified

Risk scores

CVSS 3.1

Type: Secondary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

sirt@juniper.net: CWE-476
nvd@nist.gov: CWE-476

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1BB9C2BB-D20B-41E9-B75F-7FAD9ECCDB99"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5342C3DC-D640-47AB-BD76-3444852988A2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AB8585E-EDC6-4400-BEE3-3A6A7C922C90"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2ABC574-B3FC-4025-B50D-7F9EEB28C806"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r1-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F6EAFC3-C3AC-4361-8530-39FCF89702F7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r1-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B363298-315C-4FD5-9417-C5B82883A224"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r1-s6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB08FF7B-01F5-4A19-858E-E2CD19D61A62"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7A3FBD3-5399-42A9-9BD9-E3C981CBD6DB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4EBD361C-8B4D-43EF-8B82-9FE165D8206E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E7539C4-6208-43EB-9A0B-4852D0CE0FA1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35299B02-DC75-458D-B86D-8A0DB95B06AA"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BAC3EF2-3339-4E3C-9C6D-E854EBBDEF9C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFB29C9B-9729-43EB-AF98-AF44038DA711"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D1FB957-54C8-428E-BC8D-2802D7F6895F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0BC4766-4BA4-4B02-A654-5C527EA66E9E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.3:r3-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB8263A9-5D63-46A2-9C98-B3980910B612"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74CA9010-D3DE-487B-B46F-589A48AB0F0A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A38F224C-8E9B-44F3-9D4F-6C9F04F57927"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "853F146A-9A0F-49B6-AFD2-9907434212F1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F73B88B-E66C-4ACD-B38D-9365FB230ABA"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C012CD07-706A-4E1C-B399-C55AEF5C8309"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0C26E59-874A-4D87-9E7F-E366F4D65ED1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D59D7A31-128B-4034-862B-8EF3CE3EE949"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C5E097B-B79E-4E6A-9291-C8CB9674FED5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "819FA3ED-F934-4B20-BC0E-D638ACCB7787"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D7D773A-4988-4D7C-A105-1885EBE14426"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1BD93674-9375-493E-BD6C-8AD41CC75DD4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:18.4:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "736B7A9F-E237-45AF-A6D6-84412475F481"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "768C0EB7-8456-4BF4-8598-3401A54D21DA"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5332B70A-F6B0-4C3B-90E2-5CBFB3326126"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81439FE8-5405-45C2-BC04-9823D2009A77"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E506138D-043E-485D-B485-94A2AB75F8E7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EF3C901-3599-463F-BEFB-8858768DC195"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD806778-A995-4A9B-9C05-F4D7B1CB1F7D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02B42BE8-1EF2-47F7-9F10-DE486A017EED"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DCAB79C9-6639-4ED0-BEC9-E7C8229DF977"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.1:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8CF858F-84BB-4AEA-B829-FCF22C326160"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.2:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E7545CE-6300-4E81-B5AF-2BE150C1B190"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CA3060F-1800-4A06-A453-FB8CE4B65312"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A5B337A-727C-4767-AD7B-E0F7F99EB46F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.3:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59006503-B2CA-4F79-AC13-7C5615A74CE5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.3:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8110DA9-54B1-43CF-AACB-76EABE0C9EF6"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.3:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11B5CC5A-1959-4113-BFCF-E4BA63D918C1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:nfx150:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D9AE81FA-B0F3-4F0B-A2D1-2BB590345058"
          },
          {
            "criteria": "cpe:2.3:h:juniper:nfx250:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7EB08A27-7777-4538-ADC4-9D2F89963C13"
          },
          {
            "criteria": "cpe:2.3:h:juniper:nfx350:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6CB56048-A486-4A46-B438-CC3084BD9CB6"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2CEBF85C-736A-4E7D-956A-3E8210D4F70B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB5AB24B-2B43-43DD-AE10-F758B4B19F2A"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "80F9DC32-5ADF-4430-B1A6-357D0B29DB78"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8B82D4C4-7A65-409A-926F-33C054DCBFBA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CE535749-F4CE-4FFA-B23D-BF09C92481E5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx380:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2305DA9D-E6BA-48F4-80CF-9E2DE7661B2F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3AA8999C-8AE4-416F-BA2A-B1A21F33B4D7"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CCC5F6F5-4347-49D3-909A-27A3A96D36C9"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "56BA6B86-D3F4-4496-AE46-AC513C6560FA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2FDDC897-747F-44DD-9599-7266F9B5B7B1"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "62FC145A-D477-4C86-89E7-F70F52773801"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "68CA098D-CBE4-4E62-9EC0-43E1B6098710"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "66F474D4-79B6-4525-983C-9A9011BD958B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References