CVE-2020-1662

{"id": "CVE-2020-1662", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "sirt@juniper.net", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-10-16T21:15:12.443", "references": [{"url": "https://kb.juniper.net/JSA11059", "tags": ["Vendor Advisory"], "source": "sirt@juniper.net"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}, {"type": "Secondary", "source": "sirt@juniper.net", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "On Juniper Networks Junos OS and Junos OS Evolved devices, BGP session flapping can lead to a routing process daemon (RPD) crash and restart, limiting the attack surface to configured BGP peers. This issue only affects devices with BGP damping in combination with accepted-prefix-limit configuration. When the issue occurs the following messages will appear in the /var/log/messages: rpd[6046]: %DAEMON-4-BGP_PREFIX_THRESH_EXCEEDED: XXXX (External AS x): Configured maximum accepted prefix-limit threshold(1800) exceeded for inet6-unicast nlri: 1984 (instance master) rpd[6046]: %DAEMON-3-BGP_CEASE_PREFIX_LIMIT_EXCEEDED: 2001:x:x:x::2 (External AS x): Shutting down peer due to exceeding configured maximum accepted prefix-limit(2000) for inet6-unicast nlri: 2001 (instance master) rpd[6046]: %DAEMON-4: bgp_rt_maxprefixes_check_common:9284: NOTIFICATION sent to 2001:x:x:x::2 (External AS x): code 6 (Cease) subcode 1 (Maximum Number of Prefixes Reached) AFI: 2 SAFI: 1 prefix limit 2000 kernel: %KERN-5: mastership_relinquish_on_process_exit: RPD crashed on master RE. Sending SIGUSR2 to chassisd (5612:chassisd) to trigger RE switchover This issue affects: Juniper Networks Junos OS: 17.2R3-S3; 17.3 version 17.3R3-S3 and later versions, prior to 17.3R3-S8; 17.4 version 17.4R2-S4, 17.4R3 and later versions, prior to 17.4R2-S10, 17.4R3-S2; 18.1 version 18.1R3-S6 and later versions, prior to 18.1R3-S10; 18.2 version 18.2R3 and later versions, prior to 18.2R3-S4; 18.2X75 version 18.2X75-D50, 18.2X75-D60 and later versions, prior to 18.2X75-D53, 18.2X75-D65; 18.3 version 18.3R2 and later versions, prior to 18.3R2-S4, 18.3R3-S2; 18.4 version 18.4R2 and later versions, prior to 18.4R2-S5, 18.4R3-S2; 19.1 version 19.1R1 and later versions, prior to 19.1R2-S2, 19.1R3-S1; 19.2 version 19.2R1 and later versions, prior to 19.2R1-S5, 19.2R2; 19.3 versions prior to 19.3R2-S3, 19.3R3; 19.4 versions prior to 19.4R1-S3, 19.4R2; 20.1 versions prior to 20.1R1-S2, 20.1R2. Juniper Networks Junos OS Evolved prior to 20.1R2-EVO. This issue does not affect Juniper Networks Junos OS versions prior to 17.2R3-S3."}, {"lang": "es", "value": "En los dispositivos Juniper Networks Junos OS y Junos OS Evolved, la interrupci\u00f3n de la sesi\u00f3n BGP puede conllevar a un bloqueo y reinicio del routing process daemon (RPD), limitando la superficie de ataque a los peers BGP configurados. Este problema solo afecta a los dispositivos con amortiguaci\u00f3n BGP en combinaci\u00f3n con la configuraci\u00f3n accepted-prefix-limit. Cuando el problema ocurre, aparecer\u00e1n los siguientes mensajes en /var/log/messages: rpd[6046]: %DAEMON-4-BGP_PREFIX_THRESH_EXCEEDED: XXXX (External AS x): Configured maximum accepted prefix-limit threshold(1800) exceeded for inet6-unicast nlri: 1984 (instance master) rpd[6046]: %DAEMON-3-BGP_CEASE_PREFIX_LIMIT_EXCEEDED: 2001:x:x:x::2 (External AS x): Shutting down peer due to exceeding configured maximum accepted prefix-limit(2000) for inet6-unicast nlri: 2001 (instance master) rpd[6046]: %DAEMON-4: bgp_rt_maxprefixes_check_common:9284: NOTIFICATION sent to 2001:x:x:x::2 (External AS x): code 6 (Cease) subcode 1 (Maximum Number of Prefixes Reached) AFI: 2 SAFI: 1 prefix limit 2000 kernel: %KERN-5: mastership_relinquish_on_process_exit: RPD crashed on master RE. Sending SIGUSR2 to chassisd (5612:chassisd) to trigger RE switchover. Este problema afecta a: Juniper Networks Junos OS: versi\u00f3n 17.2R3-S3; versiones 17.3 17.3R3-S3 y versiones posteriores, anteriores a 17.3R3-S8; 17.4 versi\u00f3n 17.4R2-S4, 17.4R3 y versiones posteriores, anteriores a 17.4R2-S10, 17.4R3-S2; 18.1 versi\u00f3n 18.1R3-S6 y versiones posteriores, anteriores a 18.1R3-S10; 18.2 versi\u00f3n 18.2R3 y versiones posteriores, anteriores a 18.2R3-S4; 18.2X75 versi\u00f3n 18.2X75-D50, 18.2X75-D60 y versiones posteriores, anteriores a 18.2X75-D53, 18.2X75-D65; 18.3 versi\u00f3n 18.3R2 y versiones posteriores, anteriores a 18.3R2-S4, 18.3R3-S2; 18.4 versi\u00f3n 18.4R2 y versiones posteriores, anteriores a 18.4R2-S5, 18. 4R3-S2; 19.1 versi\u00f3n 19.1R1 y versiones posteriores, anteriores a 19.1R2-S2, 19.1R3-S1; 19.2 versi\u00f3n 19.2R1 y versiones posteriores, anteriores a 19.2R1-S5, 19.2R2; 19.3 versiones anteriores a 19.3R2-S3, 19.3R3; 19.4 versiones anteriores a 19.4R1-S3, 19.4R2; Versiones 20.1 anteriores a 20.1R1-S2, 20.1R2. Juniper Networks Junos OS Evolved versiones anteriores a 20.1R2-EVO. Este problema no afecta a Juniper Networks Junos OS versiones anteriores a 17.2R3-S3"}], "lastModified": "2020-10-28T17:52:45.217", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:17.2:r3-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7939BCE6-D4E8-4366-B954-32D77F21A35D"}, {"criteria": "cpe:2.3:o:juniper:junos:17.3:r3-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "488BB10A-1360-42E5-A68D-23D51B332850"}, {"criteria": "cpe:2.3:o:juniper:junos:17.3:r3-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "64988F0A-E02C-455B-99C9-4059C896416F"}, {"criteria": "cpe:2.3:o:juniper:junos:17.3:r3-s7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9C703CA-9309-413A-9CD7-585277ADD32D"}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B482BCC-1F0C-47AA-B63B-1B39CEF7B2C0"}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A636F9F2-2DA7-4A27-AD80-FD1B34DFCA94"}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EC7D216-D8F3-4ABD-97C9-4C9FB6DF64FF"}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E327643-D8D8-4EFA-9F38-BA862A919501"}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1BC6CE1C-9DD8-429E-BDC2-251D8C8674E3"}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63B00B4F-3E65-4CB2-807D-43908B570AE6"}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8732E25A-9073-4C7B-9E89-C02368728EB4"}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09255363-BF79-4FC3-AADD-5FAD0902174F"}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7988CE92-71D2-4EEC-B596-4A60E2C1136A"}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "330D176F-8DAD-440C-A623-44FA233FAB01"}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8CC5EAB8-1364-4325-9F01-BE7CC479C29D"}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E2E933A-852F-4257-860D-09638EE0D2F3"}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B670F988-78F2-4BC6-B7FC-E34C280F67DC"}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2F9451C7-6466-4AC9-9A7F-90A2817AED6C"}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r3-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "871CA952-C5EC-4A25-8EF0-C2EC484F7DE9"}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r3-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80E2AD65-3DAC-4618-AB73-C43EDCDC7A13"}, {"criteria": "cpe:2.3:o:juniper:junos:18.2x75:d50:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EAB1E336-C92A-4A65-A3D9-F2926E76A598"}, {"criteria": "cpe:2.3:o:juniper:junos:18.2x75:d51:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F15B017-F0AB-4DB7-9718-85C97CBC19DF"}, {"criteria": "cpe:2.3:o:juniper:junos:18.2x75:d60:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A109959-DE76-44D3-9AE2-0106875B03A0"}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7A3FBD3-5399-42A9-9BD9-E3C981CBD6DB"}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EBD361C-8B4D-43EF-8B82-9FE165D8206E"}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E7539C4-6208-43EB-9A0B-4852D0CE0FA1"}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35299B02-DC75-458D-B86D-8A0DB95B06AA"}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CFB29C9B-9729-43EB-AF98-AF44038DA711"}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D1FB957-54C8-428E-BC8D-2802D7F6895F"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D59D7A31-128B-4034-862B-8EF3CE3EE949"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C5E097B-B79E-4E6A-9291-C8CB9674FED5"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "819FA3ED-F934-4B20-BC0E-D638ACCB7787"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D7D773A-4988-4D7C-A105-1885EBE14426"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1BD93674-9375-493E-BD6C-8AD41CC75DD4"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "736B7A9F-E237-45AF-A6D6-84412475F481"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "62E63730-F697-4FE6-936B-FD9B4F22EAE8"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5332B70A-F6B0-4C3B-90E2-5CBFB3326126"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81439FE8-5405-45C2-BC04-9823D2009A77"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E506138D-043E-485D-B485-94A2AB75F8E7"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0EF3C901-3599-463F-BEFB-8858768DC195"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD806778-A995-4A9B-9C05-F4D7B1CB1F7D"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCAB79C9-6639-4ED0-BEC9-E7C8229DF977"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8CF858F-84BB-4AEA-B829-FCF22C326160"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5405F361-AB96-4477-AA0D-49B874324B39"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CA3060F-1800-4A06-A453-FB8CE4B65312"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A5B337A-727C-4767-AD7B-E0F7F99EB46F"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16FDE60B-7A99-4683-BC14-530B5B005F8B"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "725D8C27-E4F8-4394-B4EC-B49B6D3C2709"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59006503-B2CA-4F79-AC13-7C5615A74CE5"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8110DA9-54B1-43CF-AACB-76EABE0C9EF6"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11B5CC5A-1959-4113-BFCF-E4BA63D918C1"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33F08A33-EF80-4D86-9A9A-9DF147B9B6D3"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF24ACBD-5F84-47B2-BFF3-E9A56666269C"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3935A586-41BD-4FA5-9596-DED6F0864777"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC743EE4-8833-452A-94DB-655BF139F883"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE96A8EA-FFE3-4D8F-9266-21899149D634"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C12A75C6-2D00-4202-B861-00FF71585FA0"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8328FDE6-9707-4142-B905-3B07C0E28E35"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41CD982F-E6F2-4951-9F96-A76C142DF08E"}], "operator": "OR"}]}], "sourceIdentifier": "sirt@juniper.net"}