CVE-2020-1608
published 2020-01-15CVE-2020-1608: Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge (BBE) service may trigger a kernel…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge (BBE) service may trigger a kernel crash (vmcore), causing the device to reboot. The issue is specific to the processing of packets destined to BBE clients connected to MX Series subscriber management platforms. This issue affects MX Series running Juniper Networks Junos OS: 17.2 versions starting from17.2R2-S6, 17.2R3 and later releases, prior to 17.2R3-S3; 17.3 versions starting from 17.3R2-S4, 17.3R3-S2 and later releases, prior to 17.3R2-S5, 17.3R3-S5; 17.4 versions starting from 17.4R2 and later releases, prior to 17.4R2-S7,17.4R3; 18.1 versions starting from 18.1R2-S3, 18.1R3 and later releases, prior to 18.1R3-S6; 18.2 versions starting from18.2R1-S1, 18.2R2 and later releases, prior to 18.2R3-S2; 18.2X75 versions prior to 18.2X75-D51, 18.2X75-D60; 18.3 versions prior to 18.3R3; 18.4 versions prior to 18.4R2; 19.1 versions prior to 19.1R1-S3, 19.1R2; 19.2 versions prior to 19.2R1-S2, 19.2R2. This issue does not affect Juniper Networks Junos OS versions prior to 17.2R2-S6.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos | — | — |
| juniper | junos_os | — | — |
| juniper | mx_series | — | — |
| juniper_networks | junos_os | >= 17.2R2-S6, 17.2R3 < 17.2* | 17.2* |
| juniper_networks | junos_os | >= 17.3R2-S4, 17.3R3-S2 < 17.3* | 17.3* |
| juniper_networks | junos_os | >= 17.4R2 < 17.4* | 17.4* |
| juniper_networks | junos_os | >= 18.1R2-S3, 18.1R3 < 18.1* | 18.1* |
| juniper_networks | junos_os | >= 18.2R1-S1, 18.2R2 < 18.2* | 18.2* |
| juniper_networks | junos_os | >= 18.2X75 < 18.2X75-D51, 18.2X75-D60 | 18.2X75-D51, 18.2X75-D60 |
| juniper_networks | junos_os | >= 18.3 < 18.3R3 | 18.3R3 |
| juniper_networks | junos_os | >= 18.4 < 18.4R2 | 18.4R2 |
| juniper_networks | junos_os | >= 19.1 < 19.1R1-S3, 19.1R2 | 19.1R1-S3, 19.1R2 |
| juniper_networks | junos_os | >= 19.2 < 19.2R1-S2, 19.2R2 | 19.2R1-S2, 19.2R2 |
| msrc | microsoft_excel_2010_service_pack_2 | — | — |
GHSA
GHSA-8wj2-ww8w-44pr: Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge (BBE) service may trigger
ghsa_unreviewed·2022-05-24
CVE-2020-1608 [HIGH] CWE-20 GHSA-8wj2-ww8w-44pr: Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge (BBE) service may trigger
Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge (BBE) service may trigger a kernel crash (vmcore), causing the device to reboot. The issue is specific to the processing of packets destined to BBE clients connected to MX Series subscriber management platforms. This issue affects MX Series running Juniper Networks Junos OS: 17.2 versions starting from17.2R2-S6, 17.2R3 and later releases, prior to 17.2R3-S3; 17.3 versions starting from 17.3R2-S4, 17.3R3-S2 and later releases, prior to 17.3R2-S5, 17.3R3-S5; 17.4 versions starting from 17.4R2 and later releases, prior to 17.4R2-S7,17.4R3; 18.1 versions starting from 18.1R2-S3, 18.1R3 and later releases, prior to 18.1R3-S6; 18.2 versions starting from18.2R1-S1, 18.2R2 an
Microsoft
Microsoft Excel Remote Code Execution Vulnerability
vendor_msrc·2020-12-08·CVSS 7.8
CVE-2020-17127 [HIGH] Microsoft Excel Remote Code Execution Vulnerability
Microsoft Excel Remote Code Execution Vulnerability
FAQ: Is the Preview Pane an attack vector for this vulnerability?
No, the Preview Pane is not an attack vector.
Microsoft Office: Microsoft Office
Microsoft: Microsoft
Customer Action Required: Yes
Impact: Remote Code Execution
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely
Reference: https://www.microsoft.com/download/details.aspx?familyid=f8adf8be-1608-41cf-8fbd-fc6f2bc2b84b
Reference: https://support.microsoft.com/kb/4493148
Reference: https://www.microsoft.com/download/details.aspx?familyid=4540f5bf-a3dc-4211-b276-527c12b6b285
Juniper
CVE-2020-1608: Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge (BBE) service may trigger
vendor_juniper·2020-01-15·CVSS 7.5
CVE-2020-1608 [HIGH] CVE-2020-1608: Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge (BBE) service may trigger
CVE-2020-1608: Receipt of a specific MPLS or IPv6 packet on the core facing interface of an MX Series device configured for Broadband Edge (BBE) service may trigger a kernel crash (vmcore), causing the device to reboot. The issue is specific to the processing of packets destined to BBE clients connected to MX Series subscriber management platforms. This issue affects MX Series running Juniper Networks Junos OS: 17.2 versions starting from17.2R2-S6, 17.2R3 and later releases, prior to 17.2R3-S3; 17.3 versions starting from 17.3R2-S4, 17.3R3-S2 and later releases, prior to 17.3R2-S5, 17.3R3-S5; 17.4 versions starting from 17.4R2 and later releases, prior to 17.4R2-S7,17.4R3; 18.1 versions starting from 18.1R2-S3, 18.1R3 and later releases, prior to 18.1R3-S6; 18.2 versions starting from18.2R
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2020-01-15
Published