CVE-2018-0026
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
11/07/2018
Last modified:
09/10/2019
Description
After Junos OS device reboot or upgrade, the stateless firewall filter configuration may not take effect. This issue can be verified by running the command: user@re0> show interfaces extensive | match filters" CAM destination filters: 0, CAM source filters: 0 Note: when the issue occurs, it does not show the applied firewall filter. The correct output should show the applied firewall filter, for example: user@re0> show interfaces extensive | match filters" CAM destination filters: 0, CAM source filters: 0 Input Filters: FIREWAL_FILTER_NAME- This issue affects firewall filters for every address family. Affected releases are Juniper Networks Junos OS: 15.1R4, 15.1R5, 15.1R6 and SRs based on these MRs. 15.1X8 versions prior to 15.1X8.3.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:juniper:junos:15.1:r4:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:15.1:r5:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:15.1:r6:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:15.1x8:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page