Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-0271

A Double Free vulnerability in the software forwarding interface daemon (sfid) process of Juniper Networks Junos OS allows an adjacently-connected attacker to cause a Denial of Service (DoS) by sending a crafted ARP packet to the device. Continued receipt and processing of the crafted ARP packets will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS on EX2200-C Series, EX3200 Series, EX3300 Series, EX4200 Series, EX4500 Series, EX4550 Series, EX6210 Series, EX8208 Series, EX8216 Series. 12.3 versions prior to 12.3R12-S17; 15.1 versions prior to 15.1R7-S8. This issue only affects the listed Marvell-chipset based EX Series devices. No other products or platforms are affected.

Published

2021-04-22T20:15:10.053

Last Modified

2024-11-21T05:42:22.177

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:A/AC:L/Au:N/C:N/I:N/A:P

Access Vector: ADJACENT_NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

6.5

Impact Score

2.9

Weaknesses

Type: Secondary
CWE-415
Type: Primary
CWE-415

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	12.3	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Operating System	juniper	junos	15.1	Yes
Hardware	juniper	ex2200-c	-	No
Hardware	juniper	ex3200	-	No
Hardware	juniper	ex3300	-	No
Hardware	juniper	ex4200	-	No
Hardware	juniper	ex4500	-	No
Hardware	juniper	ex4550	-	No
Hardware	juniper	ex6210	-	No
Hardware	juniper	ex8208	-	No
Hardware	juniper	ex8216	-	No

References

https://kb.juniper.net/JSA11162 Vendor Advisory ([email protected])
https://kb.juniper.net/JSA11162 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)