CVE-2021-0225Improper Check for Unusual or Exceptional Conditions in Networks Junos OS Evolved

CWE-754Improper Check for Unusual or Exceptional Conditions4 documents4 sources
Severity
5.8MEDIUMNVD
EPSS
0.2%
top 59.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OS EvolvedJuniper Junos OS Evolved
Timeline
PublishedApr 22
Latest updateMay 24

Description

An Improper Check for Unusual or Exceptional Conditions in Juniper Networks Junos OS Evolved may cause the stateless firewall filter configuration which uses the action 'policer' in certain combinations with other options to not take effect. An administrator can use the following CLI command to see the failures with filter configuration: user@device> show log kfirewall-agent.log | match ERROR Jul 23 14:16:03 ERROR: filter not supported This issue affects Juniper Networks Junos OS Evolved: Versio

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

CVEListV5juniper_networks/junos_os_evolved19.1R1-EVOunspecified+1
NVDjuniper/junos_os_evolved6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-v55m-mm25-x584: An Improper Check for Unusual or Exceptional Conditions in Juniper Networks Junos OS Evolved may cause the stateless firewall filter configuration whi2022-05-24
CVEList
Junos OS Evolved: Stateless IP firewall filter does not work as expected2021-04-22

📋Vendor Advisories

1
Juniper
CVE-2021-0225: An Improper Check for Unusual or Exceptional Conditions in Juniper Networks Junos OS Evolved may cause the stateless firewall filter configuration whi2021-04-22
CVE-2021-0225 — Networks Junos OS Evolved vulnerability | cvebase