CVE-2021-0267

Published Apr 22, 2021

Last updated 3 years ago

Overview

Description: An Improper Input Validation vulnerability in the active-lease query portion in JDHCPD's DHCP Relay Agent of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) by sending a crafted DHCP packet to the device thereby crashing the jdhcpd DHCP service. This is typically configured for Broadband Subscriber Sessions. Continued receipt and processing of this crafted packet will create a sustained Denial of Service (DoS) condition. This issue affects Juniper Networks Junos OS: 19.4 versions prior to 19.4R3-S1; 20.1 versions prior to 20.1R2-S1, 20.1R3; 20.2 versions prior to 20.2R3; 20.3 versions prior to 20.3R2. This issue does not affect Junos OS Evolved.
Source: sirt@juniper.net
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 3.3
Impact score: 2.9
Exploitability score: 6.5
Vector string: AV:A/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-20
sirt@juniper.net: CWE-20

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC743EE4-8833-452A-94DB-655BF139F883"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE96A8EA-FFE3-4D8F-9266-21899149D634"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.4:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C12A75C6-2D00-4202-B861-00FF71585FA0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4DCFA774-96EF-4018-82CF-95C807025C24"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76022948-4B07-43CB-824C-44E1AB3537CB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.4:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25446F60-5CB9-4923-BCE8-609AE3CFDFBC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:19.4:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "758275F3-9457-45A2-8F57-65DCD659FC1B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8328FDE6-9707-4142-B905-3B07C0E28E35"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41CD982F-E6F2-4951-9F96-A76C142DF08E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19FDC05F-5582-4F7E-B628-E58A3C0E7F2F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "401306D1-E9CE-49C6-8DC9-0E8747B9DC2C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "615EAF48-AD53-4CC2-B233-5EA5C0F72CB1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.1:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC8E7547-6649-436D-BC45-184417680C72"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD07B7E2-F5C2-4610-9133-FDA9E66DFF4F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3C23AEB-34DE-44FB-8D64-E69D6E8B7401"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.2:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18DB9401-5A51-4BB3-AC2F-58F58F1C788C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.2:r1-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "06F53DA5-59AE-403C-9B1E-41CE267D8BB1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.2:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3332262F-81DA-4D78-99C9-514CADA46611"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.2:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B46B63A2-1518-4A29-940C-F05624C9658D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.2:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E0D4959-3865-42A7-98CD-1103EBD84528"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.2:r2-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A58292B-814C-49E7-8D6D-BE26EFB9ADDF"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.3:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C9BC697-C7C9-447D-9EBD-E9711462583E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.3:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B80433B-57B1-49EF-B1A1-83781D6102E3"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Configurations

References