CVE-2020-1645Race Condition in Networks Junos OS

CWE-362Race Condition4 documents4 sources
Severity
8.3HIGHNVD
EPSS
0.3%
top 49.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OSJuniper Junos
Timeline
PublishedJul 17
Latest updateMay 24

Description

When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon (mspmand) process, responsible for managing "URL Filtering service", may crash, causing the Services PIC to restart. While the Services PIC is restarting, all PIC services including DNS filtering service (DNS sink holing) will be bypassed until the Services PIC completes its boot process. If

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:LExploitability: 3.9 | Impact: 3.7

Affected Packages2 packages

CVEListV5juniper_networks/junos_os17.317.3R3-S8+6
NVDjuniper/junos7 versions+6

🔴Vulnerability Details

2
GHSA
GHSA-cvr9-hv4p-wfcw: When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of pack2022-05-24
CVEList
Junos OS: MX Series: Services card might restart when DNS filtering is enabled2020-07-17

📋Vendor Advisories

1
Juniper
CVE-2020-1645: When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of pack2020-07-17
CVE-2020-1645 — Race Condition in Networks Junos OS | cvebase