CVE-2019-0068Improper Check for Unusual or Exceptional Conditions in Networks Junos OS

CWE-754Improper Check for Unusual or Exceptional Conditions4 documents4 sources
Severity
7.5HIGHNVD
CNA6.5
EPSS
0.3%
top 48.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OSJuniper Junos
Timeline
PublishedOct 9
Latest updateMay 24

Description

The SRX flowd process, responsible for packet forwarding, may crash and restart when processing specific multicast packets. By continuously sending the specific multicast packets, an attacker can repeatedly crash the flowd process causing a sustained Denial of Service. This issue affects Juniper Networks Junos OS on SRX Series: 12.3X48 versions prior to 12.3X48-D90; 15.1X49 versions prior to 15.1X49-D180; 17.3 versions; 17.4 versions prior to 17.4R2-S5, 17.4R3; 18.1 versions prior to 18.1R3-S6;

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5juniper_networks/junos_os12.3X4812.3X48-D90+8
NVDjuniper/junos9 versions+8

🔴Vulnerability Details

2
GHSA
GHSA-wf66-qg8f-m4r9: The SRX flowd process, responsible for packet forwarding, may crash and restart when processing specific multicast packets2022-05-24
CVEList
Junos OS: SRX Series: Denial of Service vulnerability in flowd due to multicast packets2019-10-09

📋Vendor Advisories

1
Juniper
CVE-2019-0068: The SRX flowd process, responsible for packet forwarding, may crash and restart when processing specific multicast packets. By continuously sending th2019-10-09
CVE-2019-0068 — Juniper Networks Junos OS vulnerability | cvebase