CVE-2021-0291

Summary

An Exposure of System Data vulnerability in Juniper Networks Junos OS and Junos OS Evolved, where a sensitive system-level resource is not being sufficiently protected, allows a network-based unauthenticated attacker to send specific traffic which partially reaches this resource. A high rate of specific traffic may lead to a partial Denial of Service (DoS) as the CPU utilization of the RE is significantly increased. The SNMP Agent Extensibility (agentx) process should only be listening to TCP port 705 on the internal routing instance. External connections destined to port 705 should not be allowed. This issue affects: Juniper Networks Junos OS: 15.1 versions prior to 15.1R7-S9; 17.3 versions prior to 17.3R3-S12; 17.4 versions prior to 17.4R2-S13, 17.4R3-S5; 18.3 versions prior to 18.3R3-S5; 18.4 versions prior to 18.4R2-S8; 19.1 versions prior to 19.1R3-S5; 19.2 versions prior to 19.2R3-S2; 19.3 versions prior to 19.3R2-S6, 19.3R3-S2; 19.4 versions prior to 19.4R1-S4, 19.4R2-S4, 19.4R3; 20.1 versions prior to 20.1R2; 20.2 versions prior to 20.2R2; 20.3 versions prior to 20.3R2. Juniper Networks Junos OS Evolved versions prior to 20.3R2-EVO. This issue does not affect Juniper Networks Junos OS versions prior to 13.2R1.

Affected Software

VendorProductVersion RangeStatus
Juniper NetworksJunos OSunspecified < 13.2R1unaffected
Juniper NetworksJunos OS15.1 < 15.1R7-S9affected
Juniper NetworksJunos OS17.3 < 17.3R3-S12affected
Juniper NetworksJunos OS17.4 < 17.4R2-S13, 17.4R3-S5affected
Juniper NetworksJunos OS18.3 < 18.3R3-S5affected
Juniper NetworksJunos OS18.4 < 18.4R2-S8, 18.4R3-S9affected
Juniper NetworksJunos OS19.1 < 19.1R3-S5affected
Juniper NetworksJunos OS19.2 < 19.2R3-S2affected
Juniper NetworksJunos OS19.3 < 19.3R2-S6, 19.3R3-S2affected
Juniper NetworksJunos OS19.4 < 19.4R1-S4, 19.4R2-S4, 19.4R3affected
Juniper NetworksJunos OS20.1 < 20.1R2affected
Juniper NetworksJunos OS20.2 < 20.2R2affected
Juniper NetworksJunos OS20.3 < 20.3R2affected
Juniper NetworksJunos OS Evolvedunspecified < 20.3R2-EVOaffected

Weaknesses

  • CWE-497: CWE-497 Exposure of System Data to an Unauthorized Control Sphere

Workarounds

Use access lists or firewall filters to deny access to TCP port 705.

ADP Enrichment

CVE Program Container

Additional References

References