In Juniper Networks Junos OS Evolved, receipt of a stream of specific genuine Layer 2 frames may cause the Advanced Forwarding Toolkit (AFT) manager process (Evo-aftmand), responsible for handling Route, Class-of-Service (CoS), Firewall operations within the packet forwarding engine (PFE) to crash and restart, leading to a Denial of Service (DoS) condition. By continuously sending this specific stream of genuine Layer 2 frames, an attacker can repeatedly crash the PFE, causing a sustained Denial of Service (DoS). This issue affects Juniper Networks Junos OS Evolved: All versions prior to 20.4R1-EVO. This issue does not affect Junos OS versions.
References
Link | Resource |
---|---|
https://kb.juniper.net/JSA11134 | Vendor Advisory |
Configurations
History
27 Apr 2021, 17:45
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-754 | |
References | (MISC) https://kb.juniper.net/JSA11134 - Vendor Advisory | |
CPE | cpe:2.3:o:juniper:junos_os_evolved:20.4:r1:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 6.1
v3 : 6.5 |
22 Apr 2021, 20:25
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-04-22 20:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-0239
Mitre link : CVE-2021-0239
CVE.ORG link : CVE-2021-0239
JSON object : View
Products Affected
juniper
- junos_os_evolved
CWE
CWE-754
Improper Check for Unusual or Exceptional Conditions