CVE-2018-0018 — Sensitive Information Exposure in Networks Junos OS

CWE-200 — Sensitive Information Exposure5 documents5 sources

Severity

5.9MEDIUMNVD

EPSS

0.3%

top 50.02%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Juniper Junos Juniper Junos OS +1 more

Timeline

PublishedApr 11

Latest updateJun 20

Description

On SRX Series devices during compilation of IDP policies, an attacker sending specially crafted packets may be able to bypass firewall rules, leading to information disclosure which an attacker may use to gain control of the target device or other internal devices, systems or services protected by the SRX Series device. This issue only applies to devices where IDP policies are applied to one or more rules. Customers not using IDP policies are not affected. Depending on if the IDP updates are aut…

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages4 packages

▶juniperjuniper/srx_series

▶CVEListV5juniper_networks/junos_os12.1X46 — 12.1X46-D60+2

▶NVDjuniper/junos12.1x46, 12.3x48, 15.1x49+2

▶juniperjuniper/junos_os

Patches

Patch: kb.juniper.net ↗Patch: kb.juniper.net ↗

🔴Vulnerability Details

GHSA

GHSA-g8gw-r224-pqqg: On SRX Series devices during compilation of IDP policies, an attacker sending specially crafted packets may be able to bypass firewall rules, leading↗2022-05-13

▶

📋Vendor Advisories

Red Hat

kernel: hwmon: (nct6775) Fix crash in clear_caseopen↗2024-06-20

▶

Juniper

CVE-2018-0018: On SRX Series devices during compilation of IDP policies, an attacker sending specially crafted packets may be able to bypass firewall rules, leading↗2018-04-11

▶