CVE-2021-0297Improper Handling of Exceptional Conditions in Networks Junos OS Evolved

CWE-755Improper Handling of Exceptional Conditions4 documents4 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 59.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OS EvolvedJuniper Junos OS Evolved
Timeline
PublishedOct 19
Latest updateMay 24

Description

A vulnerability in the processing of TCP MD5 authentication in Juniper Networks Junos OS Evolved may allow a BGP or LDP session configured with MD5 authentication to succeed, even if the peer does not have TCP MD5 authentication enabled. This could lead to untrusted or unauthorized sessions being established, resulting in an impact on confidentiality or stability of the network. This issue affects Juniper Networks Junos OS Evolved: All versions prior to 20.3R2-S1-EVO; 20.4 versions prior to 20.4

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NExploitability: 3.9 | Impact: 2.5

Affected Packages2 packages

CVEListV5juniper_networks/junos_os_evolvedunspecified20.3R2-S1-EVO+2
NVDjuniper/junos_os_evolved20.3, 20.4, 21.1+2

🔴Vulnerability Details

2
GHSA
GHSA-7wwm-2jv9-972x: A vulnerability in the processing of TCP MD5 authentication in Juniper Networks Junos OS Evolved may allow a BGP or LDP session configured with MD5 au2022-05-24
CVEList
Junos OS Evolved: BGP and LDP sessions with TCP MD5 authentication established with peers not configured for authentication2021-10-19

📋Vendor Advisories

1
Juniper
CVE-2021-0297: A vulnerability in the processing of TCP MD5 authentication in Juniper Networks Junos OS Evolved may allow a BGP or LDP session configured with MD5 au2021-10-19
CVE-2021-0297 — Networks Junos OS Evolved vulnerability | cvebase