Lucene search

JuniperCVE-2020-1613

HistoryApr 08, 2020 - 8:15 p.m.

CVE-2020-1613

2020-04-0820:15:13

CWE-710

juniper

web.nvd.nist.gov

vulnerability

bgp flowspec

juniper networks

junos os

cve-2020-1613

nvd

security issue

bgp session termination

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

42.5%

JSON

A vulnerability in the BGP FlowSpec implementation may cause a Juniper Networks Junos OS device to terminate an established BGP session upon receiving a specific BGP FlowSpec advertisement. The BGP NOTIFICATION message that terminates an established BGP session is sent toward the peer device that originally sent the specific BGP FlowSpec advertisement. This specific BGP FlowSpec advertisement received from a BGP peer might get propagated from a Junos OS device running the fixed release to another device that is vulnerable causing BGP session termination downstream. This issue affects IPv4 and IPv6 BGP FlowSpec deployment. This issue affects Juniper Networks Junos OS: 12.3; 12.3X48 on SRX Series; 14.1X53 on EX and QFX Series; 15.1 versions prior to 15.1R7-S5; 15.1F versions prior to 15.1F6-S13; 15.1X49 versions prior to 15.1X49-D180 on SRX Series; 15.1X53 versions prior to 15.1X53-D238 on QFX5200/QFX5110; 15.1X53 versions prior to 15.1X53-D497 on NFX Series; 15.1X53 versions prior to 15.1X53-D592 on EX2300/EX3400; 16.1 versions prior to 16.1R7-S7; 17.1 versions prior to 17.1R2-S12, 17.1R3; 17.2 versions prior to 17.2R2-S7, 17.2R3; 17.2X75 versions prior to 17.2X75-D102, 17.2X75-D110, 17.2X75-D44; 17.3 versions prior to 17.3R2-S5, 17.3R3-S5; 17.4 versions prior to 17.4R1-S8, 17.4R2; 18.1 versions prior to 18.1R2-S4, 18.1R3; 18.2X75 versions prior to 18.2X75-D20.

Affected configurations

Nvd

Node

juniperjunosMatch12.3-

juniperjunosMatch15.1-

juniperjunosMatch15.1f

juniperjunosMatch15.1f1

juniperjunosMatch15.1f2

juniperjunosMatch15.1f2-s1

juniperjunosMatch15.1f2-s2

juniperjunosMatch15.1f2-s3

juniperjunosMatch15.1f2-s4

juniperjunosMatch15.1f3

juniperjunosMatch15.1f4

juniperjunosMatch15.1f5

juniperjunosMatch15.1f5-s7

juniperjunosMatch15.1f6

juniperjunosMatch15.1f6-s1

juniperjunosMatch15.1f6-s12

juniperjunosMatch15.1f6-s2

juniperjunosMatch15.1f6-s3

juniperjunosMatch15.1f6-s4

juniperjunosMatch15.1f6-s7

juniperjunosMatch15.1f7

juniperjunosMatch15.1r1

juniperjunosMatch15.1r2

juniperjunosMatch15.1r3

juniperjunosMatch15.1r4

juniperjunosMatch15.1r4-s7

juniperjunosMatch15.1r4-s8

juniperjunosMatch15.1r4-s9

juniperjunosMatch15.1r5

juniperjunosMatch15.1r5-s1

juniperjunosMatch15.1r5-s5

juniperjunosMatch15.1r5-s6

juniperjunosMatch15.1r6

juniperjunosMatch15.1r6-s1

juniperjunosMatch15.1r6-s2

juniperjunosMatch15.1r6-s6

juniperjunosMatch15.1r7

juniperjunosMatch15.1r7-s1

juniperjunosMatch15.1r7-s2

juniperjunosMatch15.1r7-s3

juniperjunosMatch15.1r7-s4

juniperjunosMatch16.1-

juniperjunosMatch16.1r1

juniperjunosMatch16.1r2

juniperjunosMatch16.1r3

juniperjunosMatch16.1r3-s10

juniperjunosMatch16.1r3-s11

juniperjunosMatch16.1r4

juniperjunosMatch16.1r4-s12

juniperjunosMatch16.1r4-s2

juniperjunosMatch16.1r4-s3

juniperjunosMatch16.1r4-s4

juniperjunosMatch16.1r4-s6

juniperjunosMatch16.1r5

juniperjunosMatch16.1r5-s4

juniperjunosMatch16.1r6-s1

juniperjunosMatch16.1r6-s6

juniperjunosMatch16.1r7

juniperjunosMatch16.1r7-s2

juniperjunosMatch16.1r7-s3

juniperjunosMatch16.1r7-s4

juniperjunosMatch16.1r7-s5

juniperjunosMatch17.1-

juniperjunosMatch17.1r1

juniperjunosMatch17.1r2

juniperjunosMatch17.1r2-s1

juniperjunosMatch17.1r2-s10

juniperjunosMatch17.1r2-s11

juniperjunosMatch17.1r2-s2

juniperjunosMatch17.1r2-s3

juniperjunosMatch17.1r2-s4

juniperjunosMatch17.1r2-s5

juniperjunosMatch17.1r2-s6

juniperjunosMatch17.1r2-s7

juniperjunosMatch17.1r2-s8

juniperjunosMatch17.1r2-s9

juniperjunosMatch17.1r3

juniperjunosMatch17.2-

juniperjunosMatch17.2r1

juniperjunosMatch17.2r1-s1

juniperjunosMatch17.2r1-s2

juniperjunosMatch17.2r1-s3

juniperjunosMatch17.2r1-s4

juniperjunosMatch17.2r1-s5

juniperjunosMatch17.2r1-s7

juniperjunosMatch17.2r1-s8

juniperjunosMatch17.2r2

juniperjunosMatch17.2r2-s10

juniperjunosMatch17.2r2-s11

juniperjunosMatch17.2r2-s6

juniperjunosMatch17.2r2-s7

juniperjunosMatch17.2r2-s9

juniperjunosMatch17.2x75-

juniperjunosMatch17.2x75d50

juniperjunosMatch17.2x75d70

juniperjunosMatch17.2x75d92

juniperjunosMatch17.3-

juniperjunosMatch17.3r1-s1

juniperjunosMatch17.3r2

juniperjunosMatch17.3r2-s1

juniperjunosMatch17.3r2-s2

juniperjunosMatch17.3r2-s3

juniperjunosMatch17.3r2-s4

juniperjunosMatch17.3r3-

juniperjunosMatch17.3r3-s1

juniperjunosMatch17.3r3-s2

juniperjunosMatch17.3r3-s3

juniperjunosMatch17.3r3-s4

juniperjunosMatch17.4-

juniperjunosMatch17.4r1

juniperjunosMatch17.4r1-s1

juniperjunosMatch17.4r1-s2

juniperjunosMatch17.4r1-s4

juniperjunosMatch17.4r1-s5

juniperjunosMatch17.4r1-s6

juniperjunosMatch17.4r1-s7

juniperjunosMatch18.1-

juniperjunosMatch18.1r2

juniperjunosMatch18.1r2-s1

juniperjunosMatch18.1r2-s2

juniperjunosMatch18.2x75-

juniperjunosMatch18.2x75-d10

Node

junipersrx100Match-

junipersrx110Match-

junipersrx1400Match-

junipersrx1500Match-

junipersrx210Match-

junipersrx220Match-

junipersrx240Match-

junipersrx300Match-

junipersrx320Match-

junipersrx340Match-

junipersrx3400Match-

junipersrx345Match-

junipersrx3600Match-

junipersrx4100Match-

junipersrx4200Match-

junipersrx4600Match-

junipersrx5400Match-

junipersrx550Match-

junipersrx5600Match-

junipersrx5800Match-

junipersrx650Match-

AND

juniperjunosMatch12.3x48d10

juniperjunosMatch15.1x49-

juniperjunosMatch15.1x49d10

juniperjunosMatch15.1x49d100

juniperjunosMatch15.1x49d110

juniperjunosMatch15.1x49d120

juniperjunosMatch15.1x49d130

juniperjunosMatch15.1x49d140

juniperjunosMatch15.1x49d15

juniperjunosMatch15.1x49d150

juniperjunosMatch15.1x49d160

juniperjunosMatch15.1x49d170

juniperjunosMatch15.1x49d20

juniperjunosMatch15.1x49d25

juniperjunosMatch15.1x49d30

juniperjunosMatch15.1x49d35

juniperjunosMatch15.1x49d40

juniperjunosMatch15.1x49d45

juniperjunosMatch15.1x49d50

juniperjunosMatch15.1x49d55

juniperjunosMatch15.1x49d60

juniperjunosMatch15.1x49d65

juniperjunosMatch15.1x49d70

juniperjunosMatch15.1x49d75

juniperjunosMatch15.1x49d80

juniperjunosMatch15.1x49d90

Node

juniperex2300Match-

juniperex2300-cMatch-

juniperex3400Match-

juniperex4300Match-

juniperex4600Match-

juniperex4650Match-

juniperex9200Match-

juniperex9250Match-

juniperqfx10002Match-

juniperqfx10008Match-

juniperqfx10016Match-

juniperqfx3000-gMatch-

juniperqfx3000-mMatch-

juniperqfx3008-iMatch-

juniperqfx3100Match-

juniperqfx3500Match-

juniperqfx3600Match-

juniperqfx3600-iMatch-

juniperqfx5100Match-

juniperqfx5110Match-

juniperqfx5200Match-

juniperqfx5210Match-

AND

juniperjunosMatch14.1x53-

Node

juniperqfx5110Match-

juniperqfx5200Match-

AND

juniperjunosMatch15.1x53-

juniperjunosMatch15.1x53d10

juniperjunosMatch15.1x53d20

juniperjunosMatch15.1x53d21

juniperjunosMatch15.1x53d210

juniperjunosMatch15.1x53d230

juniperjunosMatch15.1x53d231

juniperjunosMatch15.1x53d232

juniperjunosMatch15.1x53d233

juniperjunosMatch15.1x53d234

juniperjunosMatch15.1x53d235

juniperjunosMatch15.1x53d236

juniperjunosMatch15.1x53d237

juniperjunosMatch15.1x53d25

juniperjunosMatch15.1x53d30

juniperjunosMatch15.1x53d31

juniperjunosMatch15.1x53d32

juniperjunosMatch15.1x53d33

juniperjunosMatch15.1x53d34

juniperjunosMatch15.1x53d40

juniperjunosMatch15.1x53d45

juniperjunosMatch15.1x53d47

juniperjunosMatch15.1x53d48

juniperjunosMatch15.1x53d50

juniperjunosMatch15.1x53d51

juniperjunosMatch15.1x53d52

juniperjunosMatch15.1x53d55

juniperjunosMatch15.1x53d56

juniperjunosMatch15.1x53d57

juniperjunosMatch15.1x53d58

juniperjunosMatch15.1x53d59

juniperjunosMatch15.1x53d60

juniperjunosMatch15.1x53d61

juniperjunosMatch15.1x53d62

juniperjunosMatch15.1x53d63

juniperjunosMatch15.1x53d64

juniperjunosMatch15.1x53d65

juniperjunosMatch15.1x53d66

juniperjunosMatch15.1x53d67

juniperjunosMatch15.1x53d68

juniperjunosMatch15.1x53d69

juniperjunosMatch15.1x53d70

Node

junipernfx150Match-

junipernfx250Match-

AND

juniperjunosMatch15.1x53-

juniperjunosMatch15.1x53d10

juniperjunosMatch15.1x53d20

juniperjunosMatch15.1x53d21

juniperjunosMatch15.1x53d210

juniperjunosMatch15.1x53d230

juniperjunosMatch15.1x53d231

juniperjunosMatch15.1x53d232

juniperjunosMatch15.1x53d233

juniperjunosMatch15.1x53d234

juniperjunosMatch15.1x53d235

juniperjunosMatch15.1x53d236

juniperjunosMatch15.1x53d237

juniperjunosMatch15.1x53d25

juniperjunosMatch15.1x53d30

juniperjunosMatch15.1x53d31

juniperjunosMatch15.1x53d32

juniperjunosMatch15.1x53d33

juniperjunosMatch15.1x53d34

juniperjunosMatch15.1x53d40

juniperjunosMatch15.1x53d45

juniperjunosMatch15.1x53d47

juniperjunosMatch15.1x53d470

juniperjunosMatch15.1x53d48

juniperjunosMatch15.1x53d495

juniperjunosMatch15.1x53d50

juniperjunosMatch15.1x53d51

juniperjunosMatch15.1x53d52

juniperjunosMatch15.1x53d55

juniperjunosMatch15.1x53d56

juniperjunosMatch15.1x53d57

juniperjunosMatch15.1x53d58

juniperjunosMatch15.1x53d59

juniperjunosMatch15.1x53d60

juniperjunosMatch15.1x53d61

juniperjunosMatch15.1x53d62

juniperjunosMatch15.1x53d63

juniperjunosMatch15.1x53d64

juniperjunosMatch15.1x53d65

juniperjunosMatch15.1x53d66

juniperjunosMatch15.1x53d67

juniperjunosMatch15.1x53d68

juniperjunosMatch15.1x53d69

juniperjunosMatch15.1x53d70

juniperjunosMatch15.1x53-d50

juniperjunosMatch15.1x53-d51

juniperjunosMatch15.1x53-d52

juniperjunosMatch15.1x53-d55

juniperjunosMatch15.1x53-d57

juniperjunosMatch15.1x53-d58

juniperjunosMatch15.1x53-d59

Node

juniperex2300Match-

juniperex3400Match-

AND

juniperjunosMatch15.1x53-

juniperjunosMatch15.1x53d10

juniperjunosMatch15.1x53d20

juniperjunosMatch15.1x53d21

juniperjunosMatch15.1x53d210

juniperjunosMatch15.1x53d230

juniperjunosMatch15.1x53d231

juniperjunosMatch15.1x53d232

juniperjunosMatch15.1x53d233

juniperjunosMatch15.1x53d234

juniperjunosMatch15.1x53d235

juniperjunosMatch15.1x53d236

juniperjunosMatch15.1x53d237

juniperjunosMatch15.1x53d25

juniperjunosMatch15.1x53d30

juniperjunosMatch15.1x53d31

juniperjunosMatch15.1x53d32

juniperjunosMatch15.1x53d33

juniperjunosMatch15.1x53d34

juniperjunosMatch15.1x53d40

juniperjunosMatch15.1x53d45

juniperjunosMatch15.1x53d47

juniperjunosMatch15.1x53d470

juniperjunosMatch15.1x53d48

juniperjunosMatch15.1x53d495

juniperjunosMatch15.1x53d50

juniperjunosMatch15.1x53d51

juniperjunosMatch15.1x53d52

juniperjunosMatch15.1x53d55

juniperjunosMatch15.1x53d56

juniperjunosMatch15.1x53d57

juniperjunosMatch15.1x53d58

juniperjunosMatch15.1x53d59

juniperjunosMatch15.1x53d590

juniperjunosMatch15.1x53d591

juniperjunosMatch15.1x53d60

juniperjunosMatch15.1x53d61

juniperjunosMatch15.1x53d62

juniperjunosMatch15.1x53d63

juniperjunosMatch15.1x53d64

juniperjunosMatch15.1x53d65

juniperjunosMatch15.1x53d66

juniperjunosMatch15.1x53d67

juniperjunosMatch15.1x53d68

juniperjunosMatch15.1x53d69

juniperjunosMatch15.1x53d70

juniperjunosMatch15.1x53-d50

juniperjunosMatch15.1x53-d51

juniperjunosMatch15.1x53-d52

juniperjunosMatch15.1x53-d55

juniperjunosMatch15.1x53-d57

juniperjunosMatch15.1x53-d58

juniperjunosMatch15.1x53-d59

VendorProductVersionCPE
juniperjunos12.3cpe:2.3:o:juniper:junos:12.3:-:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:-:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f1:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2-s1:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2-s2:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2-s3:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2-s4:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f3:*:*:*:*:*:*

Vendor	Product	Version	CPE
juniper	junos	12.3	cpe:2.3:o:juniper:junos:12.3:-::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:-::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f1::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2-s1::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2-s2::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2-s3::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2-s4::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f3::::::

Rows per page:

1-10 of 2471

CNA Affected

[
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "12.3"
      },
      {
        "lessThan": "15.1R7-S5",
        "status": "affected",
        "version": "15.1",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1F6-S13",
        "status": "affected",
        "version": "15.1F",
        "versionType": "custom"
      },
      {
        "lessThan": "16.1R7-S7",
        "status": "affected",
        "version": "16.1",
        "versionType": "custom"
      },
      {
        "lessThan": "17.1R2-S12, 17.1R3",
        "status": "affected",
        "version": "17.1",
        "versionType": "custom"
      },
      {
        "lessThan": "17.2R2-S7, 17.2R3",
        "status": "affected",
        "version": "17.2",
        "versionType": "custom"
      },
      {
        "lessThan": "17.2X75-D102, 17.2X75-D110, 17.2X75-D44",
        "status": "affected",
        "version": "17.2X75",
        "versionType": "custom"
      },
      {
        "lessThan": "17.3R2-S5, 17.3R3-S5",
        "status": "affected",
        "version": "17.3",
        "versionType": "custom"
      },
      {
        "lessThan": "17.4R1-S8, 17.4R2",
        "status": "affected",
        "version": "17.4",
        "versionType": "custom"
      },
      {
        "lessThan": "18.1R2-S4, 18.1R3",
        "status": "affected",
        "version": "18.1",
        "versionType": "custom"
      },
      {
        "lessThan": "18.2X75-D20",
        "status": "affected",
        "version": "18.2X75",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "SRX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "12.3X48"
      },
      {
        "lessThan": "15.1X49-D180",
        "status": "affected",
        "version": "15.1X49",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "EX and QFX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "14.1X53"
      }
    ]
  },
  {
    "platforms": [
      "QFX5200/QFX5110"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1X53-D238",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "NFX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1X53-D497",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "EX2300/EX3400"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1X53-D592",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      }
    ]
  }
]

References

kb.juniper.net/JSA10996

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

42.5%

JSON

Related for CVE-2020-1613