Lucene search

JuniperCVE-2021-0291

HistoryJul 15, 2021 - 8:15 p.m.

CVE-2021-0291

2021-07-1520:15:10

CWE-497

CWE-200

juniper

web.nvd.nist.gov

cve-2021-0291

juniper networks

junos os

cpu utilization

dos

snmp

vulnerability

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

EPSS

0.001

Percentile

41.2%

JSON

An Exposure of System Data vulnerability in Juniper Networks Junos OS and Junos OS Evolved, where a sensitive system-level resource is not being sufficiently protected, allows a network-based unauthenticated attacker to send specific traffic which partially reaches this resource. A high rate of specific traffic may lead to a partial Denial of Service (DoS) as the CPU utilization of the RE is significantly increased. The SNMP Agent Extensibility (agentx) process should only be listening to TCP port 705 on the internal routing instance. External connections destined to port 705 should not be allowed. This issue affects: Juniper Networks Junos OS: 15.1 versions prior to 15.1R7-S9; 17.3 versions prior to 17.3R3-S12; 17.4 versions prior to 17.4R2-S13, 17.4R3-S5; 18.3 versions prior to 18.3R3-S5; 18.4 versions prior to 18.4R2-S8; 19.1 versions prior to 19.1R3-S5; 19.2 versions prior to 19.2R3-S2; 19.3 versions prior to 19.3R2-S6, 19.3R3-S2; 19.4 versions prior to 19.4R1-S4, 19.4R2-S4, 19.4R3; 20.1 versions prior to 20.1R2; 20.2 versions prior to 20.2R2; 20.3 versions prior to 20.3R2. Juniper Networks Junos OS Evolved versions prior to 20.3R2-EVO. This issue does not affect Juniper Networks Junos OS versions prior to 13.2R1.

Affected configurations

Nvd

Node

juniperjunosMatch15.1-

juniperjunosMatch15.1a1

juniperjunosMatch15.1f

juniperjunosMatch15.1f1

juniperjunosMatch15.1f2

juniperjunosMatch15.1f2-s1

juniperjunosMatch15.1f2-s2

juniperjunosMatch15.1f2-s3

juniperjunosMatch15.1f2-s4

juniperjunosMatch15.1f3

juniperjunosMatch15.1f4

juniperjunosMatch15.1f5

juniperjunosMatch15.1f5-s7

juniperjunosMatch15.1f6

juniperjunosMatch15.1f6-s1

juniperjunosMatch15.1f6-s10

juniperjunosMatch15.1f6-s12

juniperjunosMatch15.1f6-s2

juniperjunosMatch15.1f6-s3

juniperjunosMatch15.1f6-s4

juniperjunosMatch15.1f6-s5

juniperjunosMatch15.1f6-s6

juniperjunosMatch15.1f6-s7

juniperjunosMatch15.1f6-s8

juniperjunosMatch15.1f6-s9

juniperjunosMatch15.1f7

juniperjunosMatch15.1r

juniperjunosMatch15.1r1

juniperjunosMatch15.1r2

juniperjunosMatch15.1r3

juniperjunosMatch15.1r4

juniperjunosMatch15.1r4-s7

juniperjunosMatch15.1r4-s8

juniperjunosMatch15.1r4-s9

juniperjunosMatch15.1r5

juniperjunosMatch15.1r5-s1

juniperjunosMatch15.1r5-s3

juniperjunosMatch15.1r5-s5

juniperjunosMatch15.1r5-s6

juniperjunosMatch15.1r6

juniperjunosMatch15.1r6-s1

juniperjunosMatch15.1r6-s2

juniperjunosMatch15.1r6-s3

juniperjunosMatch15.1r6-s4

juniperjunosMatch15.1r6-s6

juniperjunosMatch15.1r7

juniperjunosMatch15.1r7-s1

juniperjunosMatch15.1r7-s2

juniperjunosMatch15.1r7-s3

juniperjunosMatch15.1r7-s4

juniperjunosMatch15.1r7-s5

juniperjunosMatch15.1r7-s6

juniperjunosMatch15.1r7-s7

juniperjunosMatch15.1r7-s8

juniperjunosMatch17.3-

juniperjunosMatch17.3r1

juniperjunosMatch17.3r1-s1

juniperjunosMatch17.3r1-s4

juniperjunosMatch17.3r2

juniperjunosMatch17.3r2-s1

juniperjunosMatch17.3r2-s2

juniperjunosMatch17.3r2-s3

juniperjunosMatch17.3r2-s4

juniperjunosMatch17.3r2-s5

juniperjunosMatch17.3r3

juniperjunosMatch17.3r3-

juniperjunosMatch17.3r3-s1

juniperjunosMatch17.3r3-s10

juniperjunosMatch17.3r3-s11

juniperjunosMatch17.3r3-s2

juniperjunosMatch17.3r3-s3

juniperjunosMatch17.3r3-s4

juniperjunosMatch17.3r3-s5

juniperjunosMatch17.3r3-s6

juniperjunosMatch17.3r3-s7

juniperjunosMatch17.3r3-s8

juniperjunosMatch17.3r3-s9

juniperjunosMatch17.4-

juniperjunosMatch17.4r1

juniperjunosMatch17.4r1-s1

juniperjunosMatch17.4r1-s2

juniperjunosMatch17.4r1-s3

juniperjunosMatch17.4r1-s4

juniperjunosMatch17.4r1-s5

juniperjunosMatch17.4r1-s6

juniperjunosMatch17.4r1-s7

juniperjunosMatch17.4r2

juniperjunosMatch17.4r2-s1

juniperjunosMatch17.4r2-s10

juniperjunosMatch17.4r2-s11

juniperjunosMatch17.4r2-s12

juniperjunosMatch17.4r2-s2

juniperjunosMatch17.4r2-s3

juniperjunosMatch17.4r2-s4

juniperjunosMatch17.4r2-s5

juniperjunosMatch17.4r2-s6

juniperjunosMatch17.4r2-s7

juniperjunosMatch17.4r2-s8

juniperjunosMatch17.4r2-s9

juniperjunosMatch17.4r3

juniperjunosMatch17.4r3-s1

juniperjunosMatch17.4r3-s2

juniperjunosMatch17.4r3-s3

juniperjunosMatch17.4r3-s4

juniperjunosMatch18.3-

juniperjunosMatch18.3r1

juniperjunosMatch18.3r1-s1

juniperjunosMatch18.3r1-s2

juniperjunosMatch18.3r1-s3

juniperjunosMatch18.3r1-s4

juniperjunosMatch18.3r1-s5

juniperjunosMatch18.3r1-s6

juniperjunosMatch18.3r2

juniperjunosMatch18.3r2-s1

juniperjunosMatch18.3r2-s2

juniperjunosMatch18.3r2-s3

juniperjunosMatch18.3r2-s4

juniperjunosMatch18.3r3

juniperjunosMatch18.3r3-s1

juniperjunosMatch18.3r3-s2

juniperjunosMatch18.3r3-s3

juniperjunosMatch18.3r3-s4

juniperjunosMatch18.4-

juniperjunosMatch18.4r1

juniperjunosMatch18.4r1-s1

juniperjunosMatch18.4r1-s2

juniperjunosMatch18.4r1-s3

juniperjunosMatch18.4r1-s4

juniperjunosMatch18.4r1-s5

juniperjunosMatch18.4r1-s6

juniperjunosMatch18.4r1-s7

juniperjunosMatch18.4r2

juniperjunosMatch18.4r2-s1

juniperjunosMatch18.4r2-s2

juniperjunosMatch18.4r2-s3

juniperjunosMatch18.4r2-s4

juniperjunosMatch18.4r2-s5

juniperjunosMatch18.4r2-s6

juniperjunosMatch18.4r2-s7

juniperjunosMatch18.4r3

juniperjunosMatch18.4r3-s1

juniperjunosMatch18.4r3-s2

juniperjunosMatch18.4r3-s3

juniperjunosMatch18.4r3-s4

juniperjunosMatch18.4r3-s5

juniperjunosMatch18.4r3-s6

juniperjunosMatch18.4r3-s7

juniperjunosMatch18.4r3-s8

juniperjunosMatch19.1-

juniperjunosMatch19.1r1

juniperjunosMatch19.1r1-s1

juniperjunosMatch19.1r1-s2

juniperjunosMatch19.1r1-s3

juniperjunosMatch19.1r1-s4

juniperjunosMatch19.1r1-s5

juniperjunosMatch19.1r1-s6

juniperjunosMatch19.1r2

juniperjunosMatch19.1r2-s1

juniperjunosMatch19.1r2-s2

juniperjunosMatch19.1r3

juniperjunosMatch19.1r3-s1

juniperjunosMatch19.1r3-s2

juniperjunosMatch19.1r3-s3

juniperjunosMatch19.1r3-s4

juniperjunosMatch19.2-

juniperjunosMatch19.2r1

juniperjunosMatch19.2r1-s1

juniperjunosMatch19.2r1-s2

juniperjunosMatch19.2r1-s3

juniperjunosMatch19.2r1-s4

juniperjunosMatch19.2r1-s5

juniperjunosMatch19.2r1-s6

juniperjunosMatch19.2r2

juniperjunosMatch19.2r2-s1

juniperjunosMatch19.2r3

juniperjunosMatch19.2r3-s1

juniperjunosMatch19.3-

juniperjunosMatch19.3r1

juniperjunosMatch19.3r1-s1

juniperjunosMatch19.3r2

juniperjunosMatch19.3r2-s1

juniperjunosMatch19.3r2-s2

juniperjunosMatch19.3r2-s3

juniperjunosMatch19.3r2-s4

juniperjunosMatch19.3r2-s5

juniperjunosMatch19.3r3

juniperjunosMatch19.3r3-s1

juniperjunosMatch19.4r1

juniperjunosMatch19.4r1-s1

juniperjunosMatch19.4r1-s2

juniperjunosMatch19.4r1-s3

juniperjunosMatch19.4r2

juniperjunosMatch19.4r2-s1

juniperjunosMatch19.4r2-s2

juniperjunosMatch19.4r2-s3

juniperjunosMatch20.1r1

juniperjunosMatch20.1r1-s1

juniperjunosMatch20.1r1-s2

juniperjunosMatch20.1r1-s3

juniperjunosMatch20.1r1-s4

juniperjunosMatch20.2r1

juniperjunosMatch20.2r1-s1

juniperjunosMatch20.2r1-s2

juniperjunosMatch20.2r1-s3

juniperjunosMatch20.3r1

juniperjunosMatch20.3r1-s1

juniperjunos_os_evolvedMatch19.2r1

juniperjunos_os_evolvedMatch19.2r2

juniperjunos_os_evolvedMatch19.3r1

juniperjunos_os_evolvedMatch19.3r2

juniperjunos_os_evolvedMatch19.4r1

juniperjunos_os_evolvedMatch19.4r2

juniperjunos_os_evolvedMatch19.4r2-s1

juniperjunos_os_evolvedMatch20.1-

juniperjunos_os_evolvedMatch20.1r1

juniperjunos_os_evolvedMatch20.1r1-s1

juniperjunos_os_evolvedMatch20.2-

juniperjunos_os_evolvedMatch20.3-

juniperjunos_os_evolvedMatch20.3r1

VendorProductVersionCPE
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:-:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:a1:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f1:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2-s1:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2-s2:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2-s3:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f2-s4:*:*:*:*:*:*
juniperjunos15.1cpe:2.3:o:juniper:junos:15.1:f3:*:*:*:*:*:*

Vendor	Product	Version	CPE
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:-::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:a1::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f1::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2-s1::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2-s2::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2-s3::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f2-s4::::::
juniper	junos	15.1	cpe:2.3:o:juniper:junos:15.1:f3::::::

Rows per page:

1-10 of 2191

CNA Affected

[
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "13.2R1",
        "status": "unaffected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1R7-S9",
        "status": "affected",
        "version": "15.1",
        "versionType": "custom"
      },
      {
        "lessThan": "17.3R3-S12",
        "status": "affected",
        "version": "17.3",
        "versionType": "custom"
      },
      {
        "lessThan": "17.4R2-S13, 17.4R3-S5",
        "status": "affected",
        "version": "17.4",
        "versionType": "custom"
      },
      {
        "lessThan": "18.3R3-S5",
        "status": "affected",
        "version": "18.3",
        "versionType": "custom"
      },
      {
        "lessThan": "18.4R2-S8, 18.4R3-S9",
        "status": "affected",
        "version": "18.4",
        "versionType": "custom"
      },
      {
        "lessThan": "19.1R3-S5",
        "status": "affected",
        "version": "19.1",
        "versionType": "custom"
      },
      {
        "lessThan": "19.2R3-S2",
        "status": "affected",
        "version": "19.2",
        "versionType": "custom"
      },
      {
        "lessThan": "19.3R2-S6, 19.3R3-S2",
        "status": "affected",
        "version": "19.3",
        "versionType": "custom"
      },
      {
        "lessThan": "19.4R1-S4, 19.4R2-S4, 19.4R3",
        "status": "affected",
        "version": "19.4",
        "versionType": "custom"
      },
      {
        "lessThan": "20.1R2",
        "status": "affected",
        "version": "20.1",
        "versionType": "custom"
      },
      {
        "lessThan": "20.2R2",
        "status": "affected",
        "version": "20.2",
        "versionType": "custom"
      },
      {
        "lessThan": "20.3R2",
        "status": "affected",
        "version": "20.3",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Junos OS Evolved",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "20.3R2-EVO",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

kb.juniper.net/JSA11193

Social References

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

EPSS

0.001

Percentile

41.2%

JSON

Related for CVE-2021-0291