CVE-2021-0236

{"id": "CVE-2021-0236", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:C", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "sirt@juniper.net", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2021-04-22T20:15:08.843", "references": [{"url": "https://kb.juniper.net/JSA11131", "tags": ["Vendor Advisory"], "source": "sirt@juniper.net"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-754"}]}, {"type": "Secondary", "source": "sirt@juniper.net", "description": [{"lang": "en", "value": "CWE-754"}]}], "descriptions": [{"lang": "en", "value": "Due to an improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved the Routing Protocol Daemon (RPD) service, upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, crashes and restarts causing a Denial of Service (DoS). Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. This issue affects only Multiprotocol BGP (MP-BGP) VPNv6 FlowSpec deployments. This issue affects: Juniper Networks Junos OS: 18.4 versions prior to 18.4R1-S8, 18.4R2-S7, 18.4R3-S7; 19.1 versions prior to 19.1R2-S2, 19.1R3-S4; 19.2 versions prior to 19.2R1-S6, 19.2R3-S2; 19.3 versions prior to 19.3R3-S2; 19.4 versions prior to 19.4R2-S4, 19.4R3-S1; 20.1 versions prior to 20.1R2, 20.1R3; 20.2 versions prior to 20.2R2, 20.2R3; 20.3 versions prior to 20.3R1-S1, 20.3R2. Juniper Networks Junos OS Evolved: All versions after 18.4R1-EVO prior to 20.3R2-EVO. This issue does not affect: Juniper Networks Junos OS versions prior to 18.4R1. Juniper Networks Junos OS Evolved versions prior to 18.4R1-EVO."}, {"lang": "es", "value": "Debido a una comprobaci\u00f3n inapropiada de condiciones inusuales o excepcionales en Juniper Networks Junos OS y Junos OS Evolved, el Routing Protocol Daemon (RPD), al recibir un paquete BGP espec\u00edfico que coincide con un t\u00e9rmino espec\u00edfico en la configuraci\u00f3n de flowpec, se bloquea y se reinicia causando una Denegaci\u00f3n de Servicio (DoS). La recepci\u00f3n y el procesamiento continuo de este paquete crear\u00e1n una condici\u00f3n sostenida de Denegaci\u00f3n de Servicio (DoS). Este problema afecta solo a las implementaciones Multiprotocol BGP (MP-BGP) VPNv6 FlowSpec. Este problema afecta a: Juniper Networks Junos OS: versiones 18.4 anteriores a 18.4R1-S8, 18.4R2-S7, 18.4R3-S7; versiones 19.1 anteriores a 19.1R2-S2, 19.1R3-S4; versiones 19.2 anteriores a 19.2R1-S6, 19.2R3-S2; versiones 19.3 anteriores a 19.3R3-S2; versiones 19.4 anteriores a 19.4R2-S4, 19.4R3-S1; versiones 20.1 anteriores a 20.1R2, 20.1R3; versiones 20.2 anteriores a 20.2R2, 20.2R3; versiones 20. 3 anteriores a 20.3R1-S1, 20.3R2. Juniper Networks Junos OS Evolved: todas las versiones posteriores a 18.4R1-EVO anteriores a 20.3R2-EVO. Este problema no afecta a: Juniper Networks Junos OS versiones anteriores a 18.4R1. Juniper Networks Junos OS Evolved versiones anteriores a 18.4R1-EVO"}], "lastModified": "2021-04-27T15:01:11.133", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:18.4:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74CA9010-D3DE-487B-B46F-589A48AB0F0A"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A38F224C-8E9B-44F3-9D4F-6C9F04F57927"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "853F146A-9A0F-49B6-AFD2-9907434212F1"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F73B88B-E66C-4ACD-B38D-9365FB230ABA"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE1F82EC-3222-4158-8923-59CDA1909A9C"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8FE95D15-B5E5-4E74-9464-C72D8B646A6B"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C012CD07-706A-4E1C-B399-C55AEF5C8309"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0C26E59-874A-4D87-9E7F-E366F4D65ED1"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r1-s7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "75902119-60D0-49F8-8E01-666E0F75935A"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D59D7A31-128B-4034-862B-8EF3CE3EE949"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C5E097B-B79E-4E6A-9291-C8CB9674FED5"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "819FA3ED-F934-4B20-BC0E-D638ACCB7787"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D7D773A-4988-4D7C-A105-1885EBE14426"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1BD93674-9375-493E-BD6C-8AD41CC75DD4"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34E28FD9-1089-42F7-8586-876DBEC965DE"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B7E72C49-1849-4A6F-81BC-D03F06D47D6D"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "736B7A9F-E237-45AF-A6D6-84412475F481"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "62E63730-F697-4FE6-936B-FD9B4F22EAE8"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r3-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "064A7052-4EF5-4BFB-88FF-8122AEECB6A7"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r3-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08C58CCB-3BAA-4400-B371-556DF46DE69C"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r3-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "28F7740D-C636-4FA3-8479-E5E039041DA6"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r3-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81F6DEA3-F07E-4FD0-87CB-4E8C0B768706"}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r3-s6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2C1601BB-CAB7-4C92-8416-1824BB85D820"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "768C0EB7-8456-4BF4-8598-3401A54D21DA"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5332B70A-F6B0-4C3B-90E2-5CBFB3326126"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81439FE8-5405-45C2-BC04-9823D2009A77"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E506138D-043E-485D-B485-94A2AB75F8E7"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0EF3C901-3599-463F-BEFB-8858768DC195"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD806778-A995-4A9B-9C05-F4D7B1CB1F7D"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02B42BE8-1EF2-47F7-9F10-DE486A017EED"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCAB79C9-6639-4ED0-BEC9-E7C8229DF977"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8CF858F-84BB-4AEA-B829-FCF22C326160"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5405F361-AB96-4477-AA0D-49B874324B39"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E45E5421-2F6F-4AF9-8EB1-431A804FC649"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r3-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "93098975-4A06-4A72-8DF0-F2C5E1AF2F77"}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r3-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1F3AEE4-CEB8-4CAA-A48A-1B4647FFFCDB"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E7545CE-6300-4E81-B5AF-2BE150C1B190"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CA3060F-1800-4A06-A453-FB8CE4B65312"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A5B337A-727C-4767-AD7B-E0F7F99EB46F"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16FDE60B-7A99-4683-BC14-530B5B005F8B"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "725D8C27-E4F8-4394-B4EC-B49B6D3C2709"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8233C3AB-470E-4D13-9BFD-C9E90918FD0B"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F7A233A-D4F6-46FA-92E9-2ACE13E4A6A4"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C71D2FA-B1A4-4004-807F-7B3BB347DF4C"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E78E854-DDD3-4D1A-97AB-AEA70B9B811F"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "512FB3D1-BA5B-4F73-BDB2-49D6889F5473"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FCBFF57-83A1-4C1C-A38D-7DAB48BCA2EC"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59006503-B2CA-4F79-AC13-7C5615A74CE5"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8110DA9-54B1-43CF-AACB-76EABE0C9EF6"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11B5CC5A-1959-4113-BFCF-E4BA63D918C1"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33F08A33-EF80-4D86-9A9A-9DF147B9B6D3"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF24ACBD-5F84-47B2-BFF3-E9A56666269C"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3935A586-41BD-4FA5-9596-DED6F0864777"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B83FB539-BD7C-4BEE-9022-098F73902F38"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7659AC36-A5EA-468A-9793-C1EC914D36F4"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0E018E1-568E-40F2-ADA5-F71509811879"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9295AF3-A883-47C3-BAF8-3D82F719733E"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC743EE4-8833-452A-94DB-655BF139F883"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE96A8EA-FFE3-4D8F-9266-21899149D634"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C12A75C6-2D00-4202-B861-00FF71585FA0"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DCFA774-96EF-4018-82CF-95C807025C24"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76022948-4B07-43CB-824C-44E1AB3537CB"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25446F60-5CB9-4923-BCE8-609AE3CFDFBC"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r2-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A23E5CEA-EFF5-4641-BC47-BA2D0859F0EE"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "758275F3-9457-45A2-8F57-65DCD659FC1B"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8328FDE6-9707-4142-B905-3B07C0E28E35"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41CD982F-E6F2-4951-9F96-A76C142DF08E"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19FDC05F-5582-4F7E-B628-E58A3C0E7F2F"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "401306D1-E9CE-49C6-8DC9-0E8747B9DC2C"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "615EAF48-AD53-4CC2-B233-5EA5C0F72CB1"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD07B7E2-F5C2-4610-9133-FDA9E66DFF4F"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3C23AEB-34DE-44FB-8D64-E69D6E8B7401"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18DB9401-5A51-4BB3-AC2F-58F58F1C788C"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "06F53DA5-59AE-403C-9B1E-41CE267D8BB1"}, {"criteria": "cpe:2.3:o:juniper:junos:20.3:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C9BC697-C7C9-447D-9EBD-E9711462583E"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:19.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2C3245C5-9EE1-490C-B7C7-5C02F155DDD8"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:19.1:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01A9BD92-5865-455D-9585-098DCFCC24DD"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:19.2:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "914D6984-1820-483B-AEB9-2C5257B5E900"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:19.2:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14C57D33-01BB-4190-B787-F5BDACE82AFD"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:19.3:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6480A5C9-3280-40C5-BC08-509555F28363"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:19.3:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D3C2D74-AF22-4BED-A0C5-089B5507D275"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F64FBB4B-7CBF-499B-A523-804857DEFAFA"}], "operator": "OR"}]}], "sourceIdentifier": "sirt@juniper.net"}