Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-0294

A vulnerability in Juniper Networks Junos OS, which only affects the release 18.4R2-S5, where a function is inconsistently implemented on Juniper Networks Junos QFX5000 Series and EX4600 Series, and if "storm-control enhanced" is configured, can lead to the enhanced storm control filter group not be installed. It will cause storm control not to work hence allowing an attacker to cause high CPU usage or packet loss issues by sending a large amount of broadcast or unknown unicast packets arriving the device. This issue affects Juniper Networks QFX5100, QFX5110, QFX5120, QFX5200, QFX5210, EX4600, and EX4650, and QFX5100 with QFX 5e Series image installed. QFX5130 and QFX5220 are not affected from this issue. This issue affects Juniper Networks Junos OS 18.4R2-S5 on QFX5000 Series and EX4600 Series. No other product or platform is affected by this vulnerability.

Published

2021-07-15T20:15:11.277

Last Modified

2024-11-21T05:42:25.540

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Secondary
CWE-474
Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	juniper	junos	18.4	Yes
Hardware	juniper	ex4600	-	No
Hardware	juniper	ex4650	-	No
Hardware	juniper	qfx5100	-	No
Hardware	juniper	qfx5110	-	No
Hardware	juniper	qfx5120	-	No
Hardware	juniper	qfx5200	-	No
Hardware	juniper	qfx5210	-	No

References

https://kb.juniper.net/JSA11196 Vendor Advisory ([email protected])
https://kb.juniper.net/JSA11196 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)