Lucene search

JuniperCVE-2018-0060

HistoryOct 10, 2018 - 6:29 p.m.

CVE-2018-0060

2018-10-1018:29:03

CWE-20

juniper

web.nvd.nist.gov

cve-2018-0060

juniper networks

junos os

input validation

dos

security vulnerability

nvd

dhcp

srx series

ex series

qfx series

nfx series

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

38.4%

JSON

An improper input validation weakness in the device control daemon process (dcd) of Juniper Networks Junos OS allows an attacker to cause a Denial of Service to the dcd process and interfaces and connected clients when the Junos device is requesting an IP address for itself. Junos devices are not vulnerable to this issue when not configured to use DHCP. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D40 on SRX Series; 12.3X48 versions prior to 12.3X48-D20 on SRX Series; 14.1X53 versions prior to 14.1X53-D40 on EX2200/VC, EX3200, EX3300/VC, EX4200, EX4300, EX4550/VC, EX4600, EX6200, EX8200/VC (XRE), QFX3500, QFX3600, QFX5100; 15.1X49 versions prior to 15.1X49-D20 on SRX Series; 15.1X53 versions prior to 15.1X53-D68 on QFX10000 Series; 15.1X53 versions prior to 15.1X53-D235 on QFX5200/QFX5110; 15.1X53 versions prior to 15.1X53-D495 on NFX150, NFX250; 15.1X53 versions prior to 15.1X53-D590 on EX2300/EX3400; 15.1 versions prior to 15.1R7-S2.

Affected configurations

Nvd

Node

juniperjunosMatch12.1x46

juniperjunosMatch12.1x46d10

juniperjunosMatch12.1x46d15

juniperjunosMatch12.1x46d20

juniperjunosMatch12.1x46d25

juniperjunosMatch12.1x46d30

juniperjunosMatch12.1x46d35

juniperjunosMatch12.1x46d40

juniperjunosMatch12.1x46d45

Node

juniperjunosMatch12.3x48

juniperjunosMatch12.3x48d10

juniperjunosMatch12.3x48d15

juniperjunosMatch12.3x48d20

Node

juniperjunosMatch15.1

juniperjunosMatch15.1f2

juniperjunosMatch15.1f3

juniperjunosMatch15.1f4

juniperjunosMatch15.1f5

juniperjunosMatch15.1f6

juniperjunosMatch15.1r1

juniperjunosMatch15.1r2

juniperjunosMatch15.1r3

juniperjunosMatch15.1r6

Node

juniperjunosMatch15.1x49

juniperjunosMatch15.1x49d10

juniperjunosMatch15.1x49d110

juniperjunosMatch15.1x49d20

Node

juniperjunosMatch15.1x53

juniperjunosMatch15.1x53d50

juniperjunosMatch15.1x53d51

juniperjunosMatch15.1x53d52

juniperjunosMatch15.1x53d55

juniperjunosMatch15.1x53d57

juniperjunosMatch15.1x53d58

AND

juniperex2300Match-

juniperex3400Match-

Node

juniperjunosMatch15.1x53

juniperjunosMatch15.1x53d10

juniperjunosMatch15.1x53d20

juniperjunosMatch15.1x53d21

juniperjunosMatch15.1x53d30

juniperjunosMatch15.1x53d32

juniperjunosMatch15.1x53d33

juniperjunosMatch15.1x53d34

juniperjunosMatch15.1x53d50

juniperjunosMatch15.1x53d60

juniperjunosMatch15.1x53d61

juniperjunosMatch15.1x53d62

juniperjunosMatch15.1x53d63

juniperjunosMatch15.1x53d64

juniperjunosMatch15.1x53d65

juniperjunosMatch15.1x53d66

AND

juniperqfx10000Match-

Node

juniperjunosMatch15.1x53

juniperjunosMatch15.1x53d210

juniperjunosMatch15.1x53d230

juniperjunosMatch15.1x53d231

juniperjunosMatch15.1x53d232

juniperjunosMatch15.1x53d30

AND

juniperqfx5110Match-

juniperqfx5200Match-

Node

juniperjunosMatch15.1x53

juniperjunosMatch15.1x53d40

juniperjunosMatch15.1x53d45

juniperjunosMatch15.1x53d490

AND

junipernfx_seriesMatch-

Node

juniperjunosMatch14.1x53

juniperjunosMatch14.1x53d10

juniperjunosMatch14.1x53d15

juniperjunosMatch14.1x53d16

juniperjunosMatch14.1x53d25

juniperjunosMatch14.1x53d26

juniperjunosMatch14.1x53d27

juniperjunosMatch14.1x53d30

juniperjunosMatch14.1x53d35

AND

juniperex3200Match-

juniperex4200Match-

juniperex4300Match-

juniperex4600Match-

juniperex6200Match-

juniperqfx3500Match-

juniperqfx3600Match-

juniperqfx5100Match-

VendorProductVersionCPE
juniperjunos12.1x46cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*
juniperjunos12.1x46cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:*
juniperjunos12.1x46cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:*
juniperjunos12.1x46cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:*
juniperjunos12.1x46cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:*
juniperjunos12.1x46cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:*
juniperjunos12.1x46cpe:2.3:o:juniper:junos:12.1x46:d35:*:*:*:*:*:*
juniperjunos12.1x46cpe:2.3:o:juniper:junos:12.1x46:d40:*:*:*:*:*:*
juniperjunos12.1x46cpe:2.3:o:juniper:junos:12.1x46:d45:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
juniper	junos	12.1x46	cpe:2.3:o:juniper:junos:12.1x46:::::::*
juniper	junos	12.1x46	cpe:2.3:o:juniper:junos:12.1x46:d10::::::
juniper	junos	12.1x46	cpe:2.3:o:juniper:junos:12.1x46:d15::::::
juniper	junos	12.1x46	cpe:2.3:o:juniper:junos:12.1x46:d20::::::
juniper	junos	12.1x46	cpe:2.3:o:juniper:junos:12.1x46:d25::::::
juniper	junos	12.1x46	cpe:2.3:o:juniper:junos:12.1x46:d30::::::
juniper	junos	12.1x46	cpe:2.3:o:juniper:junos:12.1x46:d35::::::
juniper	junos	12.1x46	cpe:2.3:o:juniper:junos:12.1x46:d40::::::
juniper	junos	12.1x46	cpe:2.3:o:juniper:junos:12.1x46:d45::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:::::::*

Rows per page:

1-10 of 781

CNA Affected

[
  {
    "platforms": [
      "SRX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "12.1X46-D40",
        "status": "affected",
        "version": "12.1X46",
        "versionType": "custom"
      },
      {
        "lessThan": "12.3X48-D20",
        "status": "affected",
        "version": "12.3X48",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1X49-D20",
        "status": "affected",
        "version": "15.1X49",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "EX2200/VC, EX3200, EX3300/VC, EX4200, EX4300, EX4550/VC, EX4600, EX6200, EX8200/VC (XRE), QFX3500, QFX3600, QFX5100"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "14.1X53-D40",
        "status": "affected",
        "version": "14.1X53",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "QFX10000 Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1X53-D68",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "QFX5200/QFX5110"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1X53-D235",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "NFX150, NFX250"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1X53-D495",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "EX2300/EX3400"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1X53-D590",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1R7-S2",
        "status": "affected",
        "version": "15.1",
        "versionType": "custom"
      }
    ]
  }
]

References

www.securitytracker.com/id/1041858

kb.juniper.net/JSA10895

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

38.4%

JSON

Related for CVE-2018-0060