CVE-2021-0211 — Improper Check for Unusual or Exceptional Conditions in Networks Junos OS

CWE-754 — Improper Check for Unusual or Exceptional Conditions4 documents4 sources

Severity

10.0CRITICALNVD

EPSS

0.4%

top 39.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Juniper Networks Junos OS Evolved Juniper Junos +1 more

Timeline

PublishedJan 15

Latest updateMay 24

Description

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon (RPD) service allows an attacker to send a valid BGP FlowSpec message thereby causing an unexpected change in the route advertisements within the BGP FlowSpec domain leading to disruptions in network traffic causing a Denial of Service (DoS) condition. Continued receipt of these update messages will cause a sustained Denial of Service condition. This issue affects Jun…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:HExploitability: 3.9 | Impact: 5.8

Affected Packages4 packages

▶CVEListV5juniper_networks/junos_os_evolvedunspecified — 20.3R1-S1-EVO, 20.3R2-EVO

▶CVEListV5juniper_networks/junos_os15.1 — 15.1R7-S8+14

▶NVDjuniper/junos_os_evolved6 versions+5

▶NVDjuniper/junos20 versions+19

🔴Vulnerability Details

GHSA

GHSA-3c2f-8cpm-89m3: An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon (RPD) service allows↗2022-05-24

▶

CVEList

Junos OS and Junos OS Evolved: Upon receipt of a specific BGP FlowSpec message network traffic may be disrupted.↗2021-01-15

▶

📋Vendor Advisories

Juniper

CVE-2021-0211: An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon (RPD) service allows↗2021-01-15

▶