Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-0055

A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by sending specific types of valid SIP traffic to the device. In this case, the flowd process crashes and generates a core dump while processing SIP ALG traffic. Continued receipt of these valid SIP packets will result in a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS: 12.3X48 versions prior to 12.3X48-D61, 12.3X48-D65 on SRX Series; 15.1X49 versions prior to 15.1X49-D130 on SRX Series; 17.3 versions prior to 17.3R3 on SRX Series; 17.4 versions prior to 17.4R2 on SRX Series.

Published

2019-10-09T20:15:16.473

Last Modified

2024-11-21T04:16:08.957

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: PARTIAL
Exploitability Score

10.0

Impact Score

2.9

Weaknesses
  • Type: Secondary
    CWE-130
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System juniper junos 12.3x48 Yes
Operating System juniper junos 12.3x48 Yes
Operating System juniper junos 12.3x48 Yes
Operating System juniper junos 12.3x48 Yes
Operating System juniper junos 12.3x48 Yes
Operating System juniper junos 12.3x48 Yes
Operating System juniper junos 12.3x48 Yes
Operating System juniper junos 12.3x48 Yes
Operating System juniper junos 12.3x48 Yes
Operating System juniper junos 12.3x48 Yes
Hardware juniper csrx - No
Hardware juniper srx100 - No
Hardware juniper srx110 - No
Hardware juniper srx1400 - No
Hardware juniper srx1500 - No
Hardware juniper srx210 - No
Hardware juniper srx220 - No
Hardware juniper srx240 - No
Hardware juniper srx300 - No
Hardware juniper srx320 - No
Hardware juniper srx340 - No
Hardware juniper srx3400 - No
Hardware juniper srx345 - No
Hardware juniper srx3600 - No
Hardware juniper srx4100 - No
Hardware juniper srx4200 - No
Hardware juniper srx4600 - No
Hardware juniper srx5400 - No
Hardware juniper srx550 - No
Hardware juniper srx550_hm - No
Hardware juniper srx5600 - No
Hardware juniper srx5800 - No
Hardware juniper srx650 - No
Hardware juniper vsrx - No
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Operating System juniper junos 15.1x49 Yes
Hardware juniper csrx - No
Hardware juniper srx100 - No
Hardware juniper srx110 - No
Hardware juniper srx1400 - No
Hardware juniper srx1500 - No
Hardware juniper srx210 - No
Hardware juniper srx220 - No
Hardware juniper srx240 - No
Hardware juniper srx300 - No
Hardware juniper srx320 - No
Hardware juniper srx340 - No
Hardware juniper srx3400 - No
Hardware juniper srx345 - No
Hardware juniper srx3600 - No
Hardware juniper srx4100 - No
Hardware juniper srx4200 - No
Hardware juniper srx4600 - No
Hardware juniper srx5400 - No
Hardware juniper srx550 - No
Hardware juniper srx550_hm - No
Hardware juniper srx5600 - No
Hardware juniper srx5800 - No
Hardware juniper srx650 - No
Hardware juniper vsrx - No
Operating System juniper junos 17.3 Yes
Operating System juniper junos 17.3 Yes
Operating System juniper junos 17.3 Yes
Operating System juniper junos 17.3 Yes
Hardware juniper csrx - No
Hardware juniper srx100 - No
Hardware juniper srx110 - No
Hardware juniper srx1400 - No
Hardware juniper srx1500 - No
Hardware juniper srx210 - No
Hardware juniper srx220 - No
Hardware juniper srx240 - No
Hardware juniper srx300 - No
Hardware juniper srx320 - No
Hardware juniper srx340 - No
Hardware juniper srx3400 - No
Hardware juniper srx345 - No
Hardware juniper srx3600 - No
Hardware juniper srx4100 - No
Hardware juniper srx4200 - No
Hardware juniper srx4600 - No
Hardware juniper srx5400 - No
Hardware juniper srx550 - No
Hardware juniper srx550_hm - No
Hardware juniper srx5600 - No
Hardware juniper srx5800 - No
Hardware juniper srx650 - No
Hardware juniper vsrx - No
Operating System juniper junos 17.4 Yes
Operating System juniper junos 17.4 Yes
Operating System juniper junos 17.4 Yes
Operating System juniper junos 17.4 Yes
Operating System juniper junos 17.4 Yes
Operating System juniper junos 17.4 Yes
Operating System juniper junos 17.4 Yes
Hardware juniper csrx - No
Hardware juniper srx100 - No
Hardware juniper srx110 - No
Hardware juniper srx1400 - No
Hardware juniper srx1500 - No
Hardware juniper srx210 - No
Hardware juniper srx220 - No
Hardware juniper srx240 - No
Hardware juniper srx300 - No
Hardware juniper srx320 - No
Hardware juniper srx340 - No
Hardware juniper srx3400 - No
Hardware juniper srx345 - No
Hardware juniper srx3600 - No
Hardware juniper srx4100 - No
Hardware juniper srx4200 - No
Hardware juniper srx4600 - No
Hardware juniper srx5400 - No
Hardware juniper srx550 - No
Hardware juniper srx550_hm - No
Hardware juniper srx5600 - No
Hardware juniper srx5800 - No
Hardware juniper srx650 - No
Hardware juniper vsrx - No
References