CVE-2018-0005Improper Check for Unusual or Exceptional Conditions in Networks Junos OS

CWE-754Improper Check for Unusual or Exceptional Conditions6 documents5 sources
Severity
8.8HIGHNVD
EPSS
0.2%
top 54.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Juniper Networks Junos OSJuniper JunosJuniper EX Series+2 more
Timeline
PublishedJan 10
Latest updateMay 13

Description

QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7.

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages5 packages

CVEListV5juniper_networks/junos_os14.1X5314.1X53-D40+2
NVDjuniper/junos14.1x53, 15.1, 15.1x53+2

🔴Vulnerability Details

1
GHSA
GHSA-xr64-jqxp-653q: QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic2022-05-13

💥Exploits & PoCs

2
Exploit-DB
ASRock Drivers - Privilege Escalation2018-10-29
Exploit-DB
NUUO NVRMini2 3.8 - 'cgi_system' Buffer Overflow (Enable Telnet)2018-09-18

📋Vendor Advisories

1
Juniper
CVE-2018-0005: QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can l2018-01-10
CVE-2018-0005 — Juniper Networks Junos OS vulnerability | cvebase