CVE-2021-31383

{"id": "CVE-2021-31383", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "sirt@juniper.net", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2021-10-19T19:15:11.313", "references": [{"url": "https://kb.juniper.net/JSA11251", "tags": ["Vendor Advisory"], "source": "sirt@juniper.net"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}, {"type": "Secondary", "source": "sirt@juniper.net", "description": [{"lang": "en", "value": "CWE-121"}]}], "descriptions": [{"lang": "en", "value": "In Point to MultiPoint (P2MP) scenarios within established sessions between network or adjacent neighbors the improper use of a source to destination copy write operation combined with a Stack-based Buffer Overflow on certain specific packets processed by the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved sent by a remote unauthenticated network attacker causes the RPD to crash causing a Denial of Service (DoS). Continued receipt and processing of these packets will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS 19.2 versions prior to 19.2R3-S2; 19.3 versions prior to 19.3R2-S6, 19.3R3-S2; 19.4 versions prior to 19.4R1-S4, 19.4R2-S4, 19.4R3-S3; 20.1 versions prior to 20.1R2-S2, 20.1R3; 20.2 versions prior to 20.2R2-S3, 20.2R3; 20.3 versions prior to 20.3R2. This issue does not affect Juniper Networks Junos OS versions prior to 19.2R1. Juniper Networks Junos OS Evolved 20.1 versions prior to 20.1R3-EVO; 20.2 versions prior to 20.2R3-EVO; 20.3 versions prior to 20.3R2-EVO."}, {"lang": "es", "value": "En escenarios Punto a Multipunto (P2MP) dentro de sesiones establecidas entre vecinos de red o adyacentes, el uso inadecuado de una operaci\u00f3n de escritura de copia de origen a destino combinada con un desbordamiento del b\u00fafer basado en la pila en determinados paquetes espec\u00edficos procesados por el demonio del protocolo de enrutamiento (RPD) de Juniper Networks Junos OS y Junos OS Evolved enviados por un atacante de red remoto no autenticado causa el bloqueo del RPD causando una Denegaci\u00f3n de Servicio (DoS). Si se siguen recibiendo y procesando estos paquetes, se crear\u00e1 una condici\u00f3n de Denegaci\u00f3n de Servicio (DoS) sostenida. Este problema afecta a: Juniper Networks Junos OS versiones 19.2 anteriores a 19.2R3-S2; versiones 19.3 anteriores a 19.3R2-S6, 19.3R3-S2; versiones 19.4 anteriores a 19.4R1-S4, 19.4R2-S4, 19.4R3-S3; versiones 20.1 anteriores a 20.1R2-S2, 20.1R3; versiones 20.2 anteriores a 20.2R2-S3, 20.2R3; versiones 20.3 anteriores a 20.3R2. Este problema no afecta a las versiones de Juniper Networks Junos OS anteriores a 19.2R1. Versiones de Juniper Networks Junos OS Evolved 20.1 anteriores a 20.1R3-EVO; versiones 20.2 anteriores a 20.2R3-EVO; versiones 20.3 anteriores a 20.3R2-EVO"}], "lastModified": "2021-10-25T17:01:22.810", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:19.2:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E7545CE-6300-4E81-B5AF-2BE150C1B190"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CA3060F-1800-4A06-A453-FB8CE4B65312"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A5B337A-727C-4767-AD7B-E0F7F99EB46F"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16FDE60B-7A99-4683-BC14-530B5B005F8B"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "725D8C27-E4F8-4394-B4EC-B49B6D3C2709"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8233C3AB-470E-4D13-9BFD-C9E90918FD0B"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F7A233A-D4F6-46FA-92E9-2ACE13E4A6A4"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ADCE4EA8-DDBA-4766-BB81-E4DA29723723"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C71D2FA-B1A4-4004-807F-7B3BB347DF4C"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E78E854-DDD3-4D1A-97AB-AEA70B9B811F"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "512FB3D1-BA5B-4F73-BDB2-49D6889F5473"}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FCBFF57-83A1-4C1C-A38D-7DAB48BCA2EC"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59006503-B2CA-4F79-AC13-7C5615A74CE5"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8110DA9-54B1-43CF-AACB-76EABE0C9EF6"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11B5CC5A-1959-4113-BFCF-E4BA63D918C1"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33F08A33-EF80-4D86-9A9A-9DF147B9B6D3"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF24ACBD-5F84-47B2-BFF3-E9A56666269C"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3935A586-41BD-4FA5-9596-DED6F0864777"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B83FB539-BD7C-4BEE-9022-098F73902F38"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7659AC36-A5EA-468A-9793-C1EC914D36F4"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r2-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0E018E1-568E-40F2-ADA5-F71509811879"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9295AF3-A883-47C3-BAF8-3D82F719733E"}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F09D3262-394A-43D1-A4ED-8887FCB20F87"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC743EE4-8833-452A-94DB-655BF139F883"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE96A8EA-FFE3-4D8F-9266-21899149D634"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C12A75C6-2D00-4202-B861-00FF71585FA0"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70FF3DD4-14CB-435D-8529-0480EB853F60"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4DCFA774-96EF-4018-82CF-95C807025C24"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76022948-4B07-43CB-824C-44E1AB3537CB"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25446F60-5CB9-4923-BCE8-609AE3CFDFBC"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r2-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A23E5CEA-EFF5-4641-BC47-BA2D0859F0EE"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "758275F3-9457-45A2-8F57-65DCD659FC1B"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r3-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B46CB928-78B5-4D60-B747-9A0988C7060D"}, {"criteria": "cpe:2.3:o:juniper:junos:19.4:r3-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED73BF1A-96E4-49F1-A6AA-7B29DAA6C112"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8328FDE6-9707-4142-B905-3B07C0E28E35"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41CD982F-E6F2-4951-9F96-A76C142DF08E"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19FDC05F-5582-4F7E-B628-E58A3C0E7F2F"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "401306D1-E9CE-49C6-8DC9-0E8747B9DC2C"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r1-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "615EAF48-AD53-4CC2-B233-5EA5C0F72CB1"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC8E7547-6649-436D-BC45-184417680C72"}, {"criteria": "cpe:2.3:o:juniper:junos:20.1:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D9789FF8-D55C-4AF9-A250-E543A0EB826F"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD07B7E2-F5C2-4610-9133-FDA9E66DFF4F"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3C23AEB-34DE-44FB-8D64-E69D6E8B7401"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18DB9401-5A51-4BB3-AC2F-58F58F1C788C"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "06F53DA5-59AE-403C-9B1E-41CE267D8BB1"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3332262F-81DA-4D78-99C9-514CADA46611"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B46B63A2-1518-4A29-940C-F05624C9658D"}, {"criteria": "cpe:2.3:o:juniper:junos:20.2:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8E0D4959-3865-42A7-98CD-1103EBD84528"}, {"criteria": "cpe:2.3:o:juniper:junos:20.3:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C9BC697-C7C9-447D-9EBD-E9711462583E"}, {"criteria": "cpe:2.3:o:juniper:junos:20.3:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B80433B-57B1-49EF-B1A1-83781D6102E3"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AED25FB6-E3FA-4543-90B2-50068D683D50"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F64FBB4B-7CBF-499B-A523-804857DEFAFA"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EEBE159F-5D94-4C18-B922-331586BEA2CA"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A38EBFC9-ECBD-4362-82B2-04C02009E85C"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0DF7C3A8-1279-4F38-9548-85AC7D6290FD"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:r2-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50D38F97-81B0-4952-A1E3-0A9AA4D34820"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:r2-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB827018-2009-483D-8D53-5BFCE8409BF4"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:r2-s4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "945442C1-C9B2-48BE-A1A6-6A8A1D0ADA88"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.1:r2-s5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F81E7058-986E-4DE3-959F-5E4C62A30941"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.2:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "487A82C9-7B7E-4ACA-BABF-65B8504079AD"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.2:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FCA8D4D2-D49D-4F91-95E2-2A0E8599338A"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.2:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF37C911-1904-475A-86F7-F92F34A1A88F"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.2:r2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DDFFE53D-202D-4396-A470-0A09F3320375"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.2:r2-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F60702A-BB4E-4F2A-93ED-1192EF3AB4A3"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.3:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37625D47-53C3-43D5-A361-A833EE06C6D4"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.3:r1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4AFB91E3-CAAC-429F-A869-DDD40FB0F84D"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.3:r1-s1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A9CA997-2DDA-4808-B2AE-8804FEB798B2"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.3:r1-s2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2AAE7C3A-5291-42B9-A665-0095E8559737"}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:20.3:r1-s3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2FD9BB14-0375-4893-8CBE-42FF5DECE3E4"}], "operator": "OR"}]}], "sourceIdentifier": "sirt@juniper.net"}