CVE-2021-0203Incomplete Filtering of Multiple Instances of Special Elements in Networks Junos OS

CWE-794Incomplete Filtering of Multiple Instances of Special Elements4 documents4 sources
Severity
8.6HIGHNVD
EPSS
0.4%
top 39.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OSJuniper Junos
Timeline
PublishedJan 15
Latest updateMay 24

Description

On Juniper Networks EX and QFX5K Series platforms configured with Redundant Trunk Group (RTG), Storm Control profile applied on the RTG interface might not take affect when it reaches the threshold condition. Storm Control enables the device to monitor traffic levels and to drop broadcast, multicast, and unknown unicast packets when a specified traffic level is exceeded, thus preventing packets from proliferating and degrading the LAN. Note: this issue does not affect EX2200, EX3300, EX4200, and

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages2 packages

CVEListV5juniper_networks/junos_os15.115.1R7-S7+13
NVDjuniper/junos13 versions+12

🔴Vulnerability Details

2
GHSA
GHSA-64ch-64p7-9mrx: On Juniper Networks EX and QFX5K Series platforms configured with Redundant Trunk Group (RTG), Storm Control profile applied on the RTG interface migh2022-05-24
CVEList
Junos OS: EX and QFX5K Series: Storm Control does not work as expected when Redundant Trunk Group is configured2021-01-15

📋Vendor Advisories

1
Juniper
CVE-2021-0203: On Juniper Networks EX and QFX5K Series platforms configured with Redundant Trunk Group (RTG), Storm Control profile applied on the RTG interface migh2021-01-15
CVE-2021-0203 — Juniper Networks Junos OS vulnerability | cvebase