CVE-2020-1660Race Condition in Networks Junos OS

CWE-362Race Condition7 documents6 sources
Severity
9.9CRITICALNVD
CNA8.3
EPSS
0.3%
top 47.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OSJuniper Junos
Timeline
PublishedOct 16
Latest updateMay 24

Description

When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of packets processed by the Multiservices PIC Management Daemon (mspmand) process, responsible for managing "URL Filtering service", may crash, causing the Services PIC to restart. While the Services PIC is restarting, all PIC services including DNS filtering service (DNS sink holing) will be bypassed until the Services PIC completes its boot process. Thi

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:HExploitability: 3.9 | Impact: 5.3

Affected Packages2 packages

CVEListV5juniper_networks/junos_os17.317.3R3-S8+5
NVDjuniper/junos6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-xcrv-h2x7-7qcc: When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of pack2022-05-24
CVEList
Junos OS: MX Series: Receipt of specific packets can cause services card to restart when DNS filtering is configured.2020-10-16

📋Vendor Advisories

1
Juniper
CVE-2020-1660: When DNS filtering is enabled on Juniper Networks Junos MX Series with one of the following cards MS-PIC, MS-MIC or MS-MPC, an incoming stream of pack2020-10-16

🕵️Threat Intelligence

2
Krebs
Microsoft Patch Tuesday, January 2021 Edition2021-01-13
Krebs
Microsoft Patch Tuesday, January 2021 Edition2021-01-12

💬Community

1
Bugzilla
CVE-2020-2102 jenkins: Non-constant time HMAC comparison2020-01-31
CVE-2020-1660 — Race Condition in Networks Junos OS | cvebase