CVE-2020-1651
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
On Juniper Networks MX series, receipt of a stream of specific Layer 2 frames may cause a memory leak resulting in the packet forwarding engine (PFE) on the line card to crash and restart, causing traffic interruption. By continuously sending this stream of specific layer 2 frame, an attacker connected to the same broadcast domain can repeatedly crash the PFE, causing a prolonged Denial of Service (DoS). This issue affects Juniper Networks Junos OS on MX Series: 17.2 versions prior to 17.2R3-S4; 17.2X75 versions prior to 17.2X75-D105.19; 17.3 versions prior to 17.3R3-S7; 17.4 versions prior to 17.4R1-S3, 17.4R2; 18.1 versions prior to 18.1R2. This issue does not affect Juniper Networks Junos OS releases prior to 17.2R1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Juniper Networks | Junos OS | unspecified < 17.2R1 | unaffected |
| Juniper Networks | Junos OS | 17.2 < 17.2R3-S4 | affected |
| Juniper Networks | Junos OS | 17.2X75 < 17.2X75-D105.19 | affected |
| Juniper Networks | Junos OS | 17.3 < 17.3R3-S7 | affected |
| Juniper Networks | Junos OS | 17.4 < 17.4R1-S3, 17.4R2 | affected |
| Juniper Networks | Junos OS | 18.1 < 18.1R2 | affected |
Weaknesses
- CWE-19: CWE-19 Data Processing Errors
Workarounds
There are no available workarounds for this issue.
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.