CVE-2019-0009

Summary

On EX2300 and EX3400 series, high disk I/O operations may disrupt the communication between the routing engine (RE) and the packet forwarding engine (PFE). In a virtual chassis (VC) deployment, this issue disrupts communication between the VC members. This issue does not affect other Junos platforms. Affected releases are Junos OS on EX2300 and EX3400 series: 15.1X53 versions prior to 15.1X53-D590; 18.1 versions prior to 18.1R2-S2, 18.1R3; 18.2 versions prior to 18.2R2.

Affected Software

VendorProductVersion RangeStatus
Juniper NetworksJunos OS15.1X53 < 15.1X53-D113, 15.1X53-D590affected
Juniper NetworksJunos OS18.1 < 18.1R2-S2, 18.1R3affected
Juniper NetworksJunos OS18.2 < 18.2R2affected

Weaknesses

  • DoS

Workarounds

Avoid performing operation that may generate high disk I/O. Limiting the access to the device to only trusted administrators from trusted administrative networks or hosts would minimize the risk.

ADP Enrichment

CVE Program Container

Additional References

References