CVE-2019-0067
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
09/10/2019
Last modified:
21/07/2021
Description
Receipt of a specific link-local IPv6 packet destined to the RE may cause the system to crash and restart (vmcore). By continuously sending a specially crafted IPv6 packet, an attacker can repeatedly crash the system causing a prolonged Denial of Service (DoS). This issue affects Juniper Networks Junos OS: 16.1 versions prior to 16.1R6-S2, 16.1R7; 16.2 versions prior to 16.2R2-S10; 17.1 versions prior to 17.1R3. This issue does not affect Juniper Networks Junos OS version 15.1 and prior versions.
Impact
Base Score 3.x
6.50
Severity 3.x
MEDIUM
Base Score 2.0
6.10
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:juniper:junos:16.1:-:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.1:r1:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.1:r2:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.1:r3:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.1:r3-s10:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.1:r3-s11:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.1:r4:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.1:r5-s4:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.1:r6-s1:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.2:-:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.2:r1:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.2:r2:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.2:r2-s1:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.2:r2-s2:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:16.2:r2-s5:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page