CVE-2021-0286Improper Check or Handling of Exceptional Conditions in Networks Junos OS Evolved

CWE-703Improper Check or Handling of Exceptional ConditionsCWE-754Improper Check for Unusual or Exceptional Conditions4 documents4 sources
Severity
7.5HIGHNVD
EPSS
0.2%
top 63.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OS EvolvedJuniper Junos OS Evolved
Timeline
PublishedJul 15
Latest updateMay 24

Description

A vulnerability in the handling of exceptional conditions in Juniper Networks Junos OS Evolved (EVO) allows an attacker to send specially crafted packets to the device, causing the Advanced Forwarding Toolkit manager (evo-aftmand-bt or evo-aftmand-zx) process to crash and restart, impacting all traffic going through the FPC, resulting in a Denial of Service (DoS). Continued receipt and processing of these packets will create a sustained Denial of Service (DoS) condition. Following messages will

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5juniper_networks/junos_os_evolvedunspecified20.4R2-EVO+1
NVDjuniper/junos_os_evolved8 versions+7

🔴Vulnerability Details

2
GHSA
GHSA-jq9h-7vhv-whc7: A vulnerability in the handling of exceptional conditions in Juniper Networks Junos OS Evolved (EVO) allows an attacker to send specially crafted pack2022-05-24
CVEList
Junos OS Evolved: Specially crafted packets may cause the AFT manager process to crash and restart2021-07-15

📋Vendor Advisories

1
Juniper
CVE-2021-0286: A vulnerability in the handling of exceptional conditions in Juniper Networks Junos OS Evolved (EVO) allows an attacker to send specially crafted pack2021-07-15
CVE-2021-0286 — Networks Junos OS Evolved vulnerability | cvebase