CVE-2020-1651
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
17/07/2020
Last modified:
19/10/2021
Description
On Juniper Networks MX series, receipt of a stream of specific Layer 2 frames may cause a memory leak resulting in the packet forwarding engine (PFE) on the line card to crash and restart, causing traffic interruption. By continuously sending this stream of specific layer 2 frame, an attacker connected to the same broadcast domain can repeatedly crash the PFE, causing a prolonged Denial of Service (DoS). This issue affects Juniper Networks Junos OS on MX Series: 17.2 versions prior to 17.2R3-S4; 17.2X75 versions prior to 17.2X75-D105.19; 17.3 versions prior to 17.3R3-S7; 17.4 versions prior to 17.4R1-S3, 17.4R2; 18.1 versions prior to 18.1R2. This issue does not affect Juniper Networks Junos OS releases prior to 17.2R1.
Impact
Base Score 3.x
6.50
Severity 3.x
MEDIUM
Base Score 2.0
3.30
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:juniper:junos:17.2:-:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r1:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r1-s1:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r1-s2:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r1-s3:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r1-s4:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r1-s5:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r1-s7:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r1-s8:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r2:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r2-s11:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r2-s6:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r2-s7:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r3-s1:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:17.2:r3-s2:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page