CVE-2020-1650
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending these specific packets, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a prolonged Denial of Service. This issue affects MX Series devices using MS-PIC, MS-MIC or MS-MPC service cards with any service configured. This issue affects Juniper Networks Junos OS on MX Series: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 and the subsequent SRs (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 and the SRs based on 18.3R2; 18.4R2 and the SRs based on 18.4R2; 19.1R1 and the SRs based on 19.1R1; 19.2R1 and the SRs based on 19.2R1; 19.3R1 and the SRs based on 19.3R1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Juniper Networks | Junos OS | 17.2R2-S7 | affected |
| Juniper Networks | Junos OS | 17.3R3-S4, 17.3R3-S5 | affected |
| Juniper Networks | Junos OS | 17.4R3 | affected |
| Juniper Networks | Junos OS | 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8 | affected |
| Juniper Networks | Junos OS | 18.2R3, 18.2R3-S1, 18.2R3-S2 | affected |
| Juniper Networks | Junos OS | 17.4R2-S4 < 17.4* | affected |
| Juniper Networks | Junos OS | 18.3R2 < 18.3* | affected |
| Juniper Networks | Junos OS | 18.4R2 < 18.4* | affected |
| Juniper Networks | Junos OS | 19.1R1 < 19.1* | affected |
| Juniper Networks | Junos OS | 19.2R1 < 19.2* | affected |
| Juniper Networks | Junos OS | 19.3R1 < 19.3* | affected |
Weaknesses
- TBD
Workarounds
There are no known workarounds for this issue.
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.