Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-0003

When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP packet meeting a specific term in the flowspec configuration, a reachable assertion failure occurs, causing the routing protocol daemon (rpd) process to crash with a core file being generated. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D77 on SRX Series; 12.3 versions prior to 12.3R12-S10; 12.3X48 versions prior to 12.3X48-D70 on SRX Series; 14.1X53 versions prior to 14.1X53-D47 on EX2200/VC, EX3200, EX3300/VC, EX4200, EX4300, EX4550/VC, EX4600, EX6200, EX8200/VC (XRE), QFX3500, QFX3600, QFX5100; 15.1 versions prior to 15.1R3; 15.1F versions prior to 15.1F3; 15.1X49 versions prior to 15.1X49-D140 on SRX Series; 15.1X53 versions prior to 15.1X53-D59 on EX2300/EX3400.

Published

2019-01-15T21:29:00.887

Last Modified

2024-11-21T04:16:01.427

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.9 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Secondary
CWE-617
Type: Primary
CWE-617

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Operating System	juniper	junos	12.1x46	Yes
Hardware	juniper	srx100	-	No
Hardware	juniper	srx110	-	No
Hardware	juniper	srx1400	-	No
Hardware	juniper	srx1500	-	No
Hardware	juniper	srx210	-	No
Hardware	juniper	srx220	-	No
Hardware	juniper	srx240	-	No
Hardware	juniper	srx300	-	No
Hardware	juniper	srx320	-	No
Hardware	juniper	srx340	-	No
Hardware	juniper	srx3400	-	No
Hardware	juniper	srx345	-	No
Hardware	juniper	srx3600	-	No
Hardware	juniper	srx4100	-	No
Hardware	juniper	srx4200	-	No
Hardware	juniper	srx5400	-	No
Hardware	juniper	srx550	-	No
Hardware	juniper	srx5600	-	No
Hardware	juniper	srx5800	-	No
Hardware	juniper	srx650	-	No
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Operating System	juniper	junos	12.3x48	Yes
Hardware	juniper	srx100	-	No
Hardware	juniper	srx110	-	No
Hardware	juniper	srx1400	-	No
Hardware	juniper	srx1500	-	No
Hardware	juniper	srx210	-	No
Hardware	juniper	srx220	-	No
Hardware	juniper	srx240	-	No
Hardware	juniper	srx300	-	No
Hardware	juniper	srx320	-	No
Hardware	juniper	srx340	-	No
Hardware	juniper	srx3400	-	No
Hardware	juniper	srx345	-	No
Hardware	juniper	srx3600	-	No
Hardware	juniper	srx4100	-	No
Hardware	juniper	srx4200	-	No
Hardware	juniper	srx5400	-	No
Hardware	juniper	srx550	-	No
Hardware	juniper	srx5600	-	No
Hardware	juniper	srx5800	-	No
Hardware	juniper	srx650	-	No
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Operating System	juniper	junos	14.1x53	Yes
Hardware	juniper	ex2200\/vc	-	No
Hardware	juniper	ex3200	-	No
Hardware	juniper	ex3300\/vc	-	No
Hardware	juniper	ex4200	-	No
Hardware	juniper	ex4300	-	No
Hardware	juniper	ex4550\/vc	-	No
Hardware	juniper	ex4600	-	No
Hardware	juniper	ex6200	-	No
Hardware	juniper	ex8200\/vc_\(xre\)	-	No
Hardware	juniper	qfx3500	-	No
Hardware	juniper	qfx3600	-	No
Hardware	juniper	qfx5100	-	No
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Operating System	juniper	junos	15.1x49	Yes
Hardware	juniper	srx100	-	No
Hardware	juniper	srx110	-	No
Hardware	juniper	srx1400	-	No
Hardware	juniper	srx1500	-	No
Hardware	juniper	srx210	-	No
Hardware	juniper	srx220	-	No
Hardware	juniper	srx240	-	No
Hardware	juniper	srx300	-	No
Hardware	juniper	srx320	-	No
Hardware	juniper	srx340	-	No
Hardware	juniper	srx3400	-	No
Hardware	juniper	srx345	-	No
Hardware	juniper	srx3600	-	No
Hardware	juniper	srx4100	-	No
Hardware	juniper	srx4200	-	No
Hardware	juniper	srx5400	-	No
Hardware	juniper	srx550	-	No
Hardware	juniper	srx5600	-	No
Hardware	juniper	srx5800	-	No
Hardware	juniper	srx650	-	No
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Operating System	juniper	junos	15.1x53	Yes
Hardware	juniper	ex2300	-	No
Hardware	juniper	ex3400	-	No

References

http://www.securityfocus.com/bid/106544 Third Party Advisory, VDB Entry ([email protected])
https://kb.juniper.net/JSA10902 Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/106544 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://kb.juniper.net/JSA10902 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)