cbcvebase.
CVE-2021-0287
published 2021-07-15

CVE-2021-0287: In a Segment Routing ISIS (SR-ISIS)/MPLS environment, on Juniper Networks Junos OS and Junos OS Evolved devices, configured with ISIS Flexible Algorithm for…

medium6.5CVSS 3.1
AVAACLPRNUINSUCNINAH
In a Segment Routing ISIS (SR-ISIS)/MPLS environment, on Juniper Networks Junos OS and Junos OS Evolved devices, configured with ISIS Flexible Algorithm for Segment Routing and sensor-based statistics, a flap of a ISIS link in the network, can lead to a routing process daemon (RPD) crash and restart, causing a Denial of Service (DoS). Continued link flaps will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS: 19.4 versions prior to 19.4R1-S4, 19.4R3-S2; 20.1 versions prior to 20.1R2-S1, 20.1R3; 20.2 versions prior to 20.2R2-S2, 20.2R3; 20.3 versions prior to 20.3R2; Juniper Networks Junos OS Evolved: 20.3-EVO versions prior to 20.3R2-EVO; 20.4-EVO versions prior to 20.4R2-EVO. This issue does not affect: Juniper Networks Junos OS releases prior to 19.4R1. Juniper Networks Junos OS Evolved releases prior to 19.4R1-EVO.

Affected

16 ranges
VendorProductVersion rangeFixed in
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos_os
juniperjunos_os_evolved
juniperjunos_os_evolved
juniper_networksjunos_os>= 19.4R1 < 19.4*19.4*
juniper_networksjunos_os>= 20.1 < 20.1R2-S1, 20.1R320.1R2-S1, 20.1R3
juniper_networksjunos_os>= 20.2 < 20.2R2-S2, 20.2R320.2R2-S2, 20.2R3
juniper_networksjunos_os>= 20.3 < 20.3R220.3R2
juniper_networksjunos_os_evolved>= 19.4R1-EVO < 19.4*19.4*
juniper_networksjunos_os_evolved>= 20.1R1-EVO < 20.1*20.1*
juniper_networksjunos_os_evolved>= 20.2R1-EVO < 20.2*20.2*
juniper_networksjunos_os_evolved>= 20.3 < 20.3R2-EVO20.3R2-EVO
juniper_networksjunos_os_evolved>= 20.4 < 20.4R2-EVO20.4R2-EVO