CVE-2021-0233

Published Apr 22, 2021

Last updated 2 years ago

CVSS high 7.5

Overview

Description: A vulnerability in Juniper Networks Junos OS ACX500 Series, ACX4000 Series, may allow an attacker to cause a Denial of Service (DoS) by sending a high rate of specific packets to the device, resulting in a Forwarding Engine Board (FFEB) crash. Continued receipt of these packets will sustain the Denial of Service (DoS) condition. This issue affects Juniper Networks Junos OS on ACX500 Series, ACX4000 Series: 17.4 versions prior to 17.4R3-S2.
Source: sirt@juniper.net
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo
sirt@juniper.net: CWE-400

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A00CA6FB-8F28-4171-B510-8DBA351E80C0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "988D317A-0646-491F-9B97-853E8E208276"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "605F1AD7-5B09-44F0-9017-15AB3EEE559C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEDDCD30-2255-4FA9-B3E2-9E88AB6F8D80"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF3F9F86-166F-45E4-92B7-3DD3B06199F3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E4EB6B0-8DB2-4199-96E4-30195D49F756"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "204FC7B5-9CF2-4AC2-9B8D-DA48CAEA6496"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1-s6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D8A8E33-473A-4A40-A7B7-47086BB9012A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r1-s7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0F65DCA-34B9-4CE8-91C9-426AAAEB4097"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E0CE79A-157D-47DE-BE65-936BC12470EB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "05060C06-18C1-40E8-AE01-385B036CC9AA"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "341417EE-71C2-465C-96CA-65B2B5B63FF0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s11:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A701A73D-A795-47DD-8EB5-55D1CDF67A49"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C752783-4843-407B-AF33-0E1D36FCAAF8"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "006EE425-A146-4E10-B050-7E754BB8402A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2B482BCC-1F0C-47AA-B63B-1B39CEF7B2C0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A636F9F2-2DA7-4A27-AD80-FD1B34DFCA94"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4EC7D216-D8F3-4ABD-97C9-4C9FB6DF64FF"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E327643-D8D8-4EFA-9F38-BA862A919501"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1BC6CE1C-9DD8-429E-BDC2-251D8C8674E3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s9:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63B00B4F-3E65-4CB2-807D-43908B570AE6"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8732E25A-9073-4C7B-9E89-C02368728EB4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:17.4:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09255363-BF79-4FC3-AADD-5FAD0902174F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:acx4000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "76E2CDA9-2379-482C-B509-D527AFE2C7D5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:acx500:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "36729286-5080-47E8-A961-976BF64F5A93"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References