CVE-2016-4921 — Uncontrolled Resource Consumption in Networks Junos OS

CWE-3993 documents3 sources

Severity

7.5HIGHNVD

EPSS

1.4%

top 19.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Juniper Junos Juniper Junos OS

Timeline

PublishedOct 13

Latest updateMay 13

Description

By flooding a Juniper Networks router running Junos OS with specially crafted IPv6 traffic, all available resources can be consumed, leading to the inability to store next hop information for legitimate traffic. In extreme cases, the crafted IPv6 traffic may result in a total resource exhaustion and kernel panic. The issue is triggered by traffic destined to the router. Transit traffic does not trigger the vulnerability. This issue only affects devices with IPv6 enabled and configured. Devices n…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

▶CVEListV5juniper_networks/junos_os11 versions+10

▶NVDjuniper/junos12 versions+11

▶juniperjuniper/junos_os

🔴Vulnerability Details

GHSA

GHSA-mh47-23hp-5vf8: By flooding a Juniper Networks router running Junos OS with specially crafted IPv6 traffic, all available resources can be consumed, leading to the in↗2022-05-13

▶

📋Vendor Advisories

Juniper

CVE-2016-4921: By flooding a Juniper Networks router running Junos OS with specially crafted IPv6 traffic, all available resources can be consumed, leading to the in↗2017-10-13

▶