Lucene search

[email protected]CVE-2019-0037

HistoryApr 10, 2019 - 8:29 p.m.

CVE-2019-0037

2019-04-1020:29:00

[email protected]

web.nvd.nist.gov

cve

2019

dhcpv6

juniper networks

junos os

vulnerability

denial of service

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

50.7%

JSON

In a Dynamic Host Configuration Protocol version 6 (DHCPv6) environment, the jdhcpd daemon may crash and restart upon receipt of certain DHCPv6 solicit messages received from a DHCPv6 client. By continuously sending the same crafted packet, an attacker can repeatedly crash the jdhcpd process causing a sustained Denial of Service (DoS) to both IPv4 and IPv6 clients. Affected releases are Juniper Networks Junos OS: 15.1 versions prior to 15.1F6-S12, 15.1R7-S3; 15.1X49 versions prior to 15.1X49-D171, 15.1X49-D180; 15.1X53 versions prior to 15.1X53-D236, 15.1X53-D496; 16.1 versions prior to 16.1R3-S10, 16.1R7-S4; 16.2 versions prior to 16.2R2-S8; 17.1 versions prior to 17.1R2-S10, 17.1R3; 17.2 versions prior to 17.2R1-S8, 17.2R3-S1; 17.3 versions prior to 17.3R3-S3; 17.4 versions prior to 17.4R1-S6, 17.4R2-S3; 18.1 versions prior to 18.1R2-S4, 18.1R3-S2; 18.2 versions prior to 18.2R2; 18.2X75 versions prior to 18.2X75-D30; 18.3 versions prior to 18.3R1-S2. This issue does not affect Junos OS releases prior to 15.1.

Affected configurations

NVD

Node

juniperjunosMatch15.1r1

juniperjunosMatch15.1r2

juniperjunosMatch15.1r3

juniperjunosMatch15.1r4

juniperjunosMatch15.1r5

juniperjunosMatch15.1r6

juniperjunosMatch15.1r7

Node

juniperjunosMatch15.1x49-d30

juniperjunosMatch15.1x49-d60

juniperjunosMatch15.1x49-d140

juniperjunosMatch15.1x49-d150

juniperjunosMatch15.1x49-d160

Node

juniperjunosMatch15.1x53-d50

juniperjunosMatch15.1x53-d51

juniperjunosMatch15.1x53-d52

juniperjunosMatch15.1x53-d55

juniperjunosMatch15.1x53-d57

juniperjunosMatch15.1x53-d58

juniperjunosMatch15.1x53-d59

Node

juniperjunosMatch16r2

juniperjunosMatch16r3

juniperjunosMatch16r4

juniperjunosMatch16r5

juniperjunosMatch16r6

juniperjunosMatch16r7

Node

juniperjunosMatch16.2r1

juniperjunosMatch16.2r2

juniperjunosMatch16.2r2-s7

Node

juniperjunosMatch17.1r1

juniperjunosMatch17.1r2

Node

juniperjunosMatch17.1r2-s9

Node

juniperjunosMatch17.2r1

juniperjunosMatch17.2r2

juniperjunosMatch17.2r3

Node

juniperjunosMatch17.2r1-s7

Node

juniperjunosMatch17.3r1

juniperjunosMatch17.3r2

juniperjunosMatch17.3r3

juniperjunosMatch17.3r3-s2

Node

juniperjunosMatch17.4r1

juniperjunosMatch17.4r1-s5

juniperjunosMatch17.4r2

Node

juniperjunosMatch18.1r1

juniperjunosMatch18.1r2

juniperjunosMatch18.1r3

juniperjunosMatch18.1r3-s1

Node

juniperjunosMatch18.2r1

Node

juniperjunosMatch18.2x75-d10

Node

juniperjunosMatch18.3r1

juniperjunosMatch18.3r1-s1

CPENameOperatorVersion
juniper:junosjuniper junoseq15.1

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	15.1

CNA Affected

[
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1F6-S12, 15.1R7-S3",
        "status": "affected",
        "version": "15.1",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1X49-D171, 15.1X49-D180",
        "status": "affected",
        "version": "15.1X49",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1X53-D236, 15.1X53-D496",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      },
      {
        "lessThan": "16.1R3-S10, 16.1R7-S4",
        "status": "affected",
        "version": "16.1",
        "versionType": "custom"
      },
      {
        "lessThan": "16.2R2-S8",
        "status": "affected",
        "version": "16.2",
        "versionType": "custom"
      },
      {
        "lessThan": "17.1R2-S10, 17.1R3",
        "status": "affected",
        "version": "17.1",
        "versionType": "custom"
      },
      {
        "lessThan": "17.2R1-S8, 17.2R3-S1",
        "status": "affected",
        "version": "17.2",
        "versionType": "custom"
      },
      {
        "lessThan": "17.3R3-S3",
        "status": "affected",
        "version": "17.3",
        "versionType": "custom"
      },
      {
        "lessThan": "17.4R1-S6, 17.4R2-S3",
        "status": "affected",
        "version": "17.4",
        "versionType": "custom"
      },
      {
        "lessThan": "18.1R2-S4, 18.1R3-S2",
        "status": "affected",
        "version": "18.1",
        "versionType": "custom"
      },
      {
        "lessThan": "18.2R2",
        "status": "affected",
        "version": "18.2",
        "versionType": "custom"
      },
      {
        "lessThan": "18.2X75-D30",
        "status": "affected",
        "version": "18.2X75",
        "versionType": "custom"
      },
      {
        "lessThan": "18.3R1-S2",
        "status": "affected",
        "version": "18.3",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1",
        "status": "unaffected",
        "version": "all",
        "versionType": "custom"
      }
    ]
  }
]

References

www.securityfocus.com/bid/107894

kb.juniper.net/JSA10926

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

50.7%

JSON

Related for CVE-2019-0037

cvelist1 nvd1 nessus1 prion1