CVE-2018-0031

Published: Jul 11, 2018Modified: Nov 21, 2024

5.9

Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.2 / Impact: 3.6

Source: NVD

Description

Receipt of specially crafted UDP/IP packets over MPLS may be able to bypass a stateless firewall filter. The crafted UDP packets must be encapsulated and meet a very specific packet format to be classified in a way that bypasses IP firewall filter rules. The packets themselves do not cause a service interruption (e.g. RPD crash), but receipt of a high rate of UDP packets may be able to contribute to a denial of service attack. This issue only affects processing of transit UDP/IP packets over MPLS, received on an interface with MPLS enabled. TCP packet processing and non-MPLS encapsulated UDP packet processing are unaffected by this issue. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D76; 12.3 versions prior to 12.3R12-S10; 12.3X48 versions prior to 12.3X48-D66, 12.3X48-D70; 14.1X53 versions prior to 14.1X53-D47; 15.1 versions prior to 15.1F6-S10, 15.1R4-S9, 15.1R6-S6, 15.1R7; 15.1X49 versions prior to 15.1X49-D131, 15.1X49-D140; 15.1X53 versions prior to 15.1X53-D59 on EX2300/EX3400; 15.1X53 versions prior to 15.1X53-D67 on QFX10K; 15.1X53 versions prior to 15.1X53-D233 on QFX5200/QFX5110; 15.1X53 versions prior to 15.1X53-D471, 15.1X53-D490 on NFX; 16.1 versions prior to 16.1R3-S8, 16.1R4-S9, 16.1R5-S4, 16.1R6-S3, 16.1R7; 16.2 versions prior to 16.2R1-S6, 16.2R2-S5, 16.2R3; 17.1 versions prior to 17.1R1-S7, 17.1R2-S7, 17.1R3; 17.2 versions prior to 17.2R1-S6, 17.2R2-S4, 17.2R3; 17.2X75 versions prior to 17.2X75-D100; 17.3 versions prior to 17.3R1-S4, 17.3R2-S2, 17.3R3; 17.4 versions prior to 17.4R1-S3, 17.4R2; 18.1 versions prior to 18.1R2; 18.2X75 versions prior to 18.2X75-D5.

Affected (127)

Products: Juniper: Junos

Juniper

1 product

Junos

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 12.1x46
Juniper Junos	Version 12.1x46 d10
Juniper Junos	Version 12.1x46 d15
Juniper Junos	Version 12.1x46 d20
Juniper Junos	Version 12.1x46 d25
Juniper Junos	Version 12.1x46 d30
Juniper Junos	Version 12.1x46 d35
Juniper Junos	Version 12.1x46 d40
Juniper Junos	Version 12.1x46 d45
Juniper Junos	Version 12.1x46 d50
Juniper Junos	Version 12.1x46 d55
Juniper Junos	Version 12.1x46 d60

Configuration B

12 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 12.3
Juniper Junos	Version 12.3 r11
Juniper Junos	Version 12.3 r12
Juniper Junos	Version 12.3 r1
Juniper Junos	Version 12.3 r2
Juniper Junos	Version 12.3 r3
Juniper Junos	Version 12.3 r4
Juniper Junos	Version 12.3 r5
Juniper Junos	Version 12.3 r6
Juniper Junos	Version 12.3 r7
Juniper Junos	Version 12.3 r8
Juniper Junos	Version 12.3 r9

Configuration C

13 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 12.3x48
Juniper Junos	Version 12.3x48 d10
Juniper Junos	Version 12.3x48 d15
Juniper Junos	Version 12.3x48 d25
Juniper Junos	Version 12.3x48 d30
Juniper Junos	Version 12.3x48 d35
Juniper Junos	Version 12.3x48 d40
Juniper Junos	Version 12.3x48 d45
Juniper Junos	Version 12.3x48 d50
Juniper Junos	Version 12.3x48 d55
Juniper Junos	Version 12.3x48 d60
Juniper Junos	Version 12.3x48 d65
Juniper Junos	Version 12.3x48 d70

Configuration D

11 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 14.1x53
Juniper Junos	Version 14.1x53 d10
Juniper Junos	Version 14.1x53 d15
Juniper Junos	Version 14.1x53 d16
Juniper Junos	Version 14.1x53 d25
Juniper Junos	Version 14.1x53 d26
Juniper Junos	Version 14.1x53 d27
Juniper Junos	Version 14.1x53 d30
Juniper Junos	Version 14.1x53 d35
Juniper Junos	Version 14.1x53 d40
Juniper Junos	Version 14.1x53 d45

Configuration E

9 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 15.1
Juniper Junos	Version 15.1 f4
Juniper Junos	Version 15.1 f6
Juniper Junos	Version 15.1 r1
Juniper Junos	Version 15.1 r2
Juniper Junos	Version 15.1 r3
Juniper Junos	Version 15.1 r4-s9
Juniper Junos	Version 15.1 r6-s6
Juniper Junos	Version 15.1 r7

Configuration F

15 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 15.1x49
Juniper Junos	Version 15.1x49 d10
Juniper Junos	Version 15.1x49 d140
Juniper Junos	Version 15.1x49 d20
Juniper Junos	Version 15.1x49 d30
Juniper Junos	Version 15.1x49 d35
Juniper Junos	Version 15.1x49 d40
Juniper Junos	Version 15.1x49 d45
Juniper Junos	Version 15.1x49 d50
Juniper Junos	Version 15.1x49 d55
Juniper Junos	Version 15.1x49 d60
Juniper Junos	Version 15.1x49 d65
Juniper Junos	Version 15.1x49 d70
Juniper Junos	Version 15.1x49 d75
Juniper Junos	Version 15.1x49 d80

Configuration G

2 platform

Running on/with	Platform Versions
Juniper Ex2300	All versions
Juniper Ex3400	All versions

Configuration H

1 platform

Running on/with	Platform Versions
Juniper Qfx10000	All versions

Configuration I

2 platform

Running on/with	Platform Versions
Juniper Qfx5110	All versions
Juniper Qfx5200	All versions

Configuration J

22 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Juniper Junos	Version 15.1x53
Juniper Junos	Version 15.1x53 d20
Juniper Junos	Version 15.1x53 d210
Juniper Junos	Version 15.1x53 d21
Juniper Junos	Version 15.1x53 d230
Juniper Junos	Version 15.1x53 d231
Juniper Junos	Version 15.1x53 d232
Juniper Junos	Version 15.1x53 d25
Juniper Junos	Version 15.1x53 d30
Juniper Junos	Version 15.1x53 d32
Juniper Junos	Version 15.1x53 d33
Juniper Junos	Version 15.1x53 d34
Juniper Junos	Version 15.1x53 d40
Juniper Junos	Version 15.1x53 d45
Juniper Junos	Version 15.1x53 d490
Juniper Junos	Version 15.1x53 d60
Juniper Junos	Version 15.1x53 d61
Juniper Junos	Version 15.1x53 d62
Juniper Junos	Version 15.1x53 d63
Juniper Junos	Version 15.1x53 d64
Juniper Junos	Version 15.1x53 d65
Juniper Junos	Version 15.1x53 d66

Running on/with	Platform Versions
Juniper Nfx250	All versions

Configuration K

7 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 16.1
Juniper Junos	Version 16.1 r1
Juniper Junos	Version 16.1 r2
Juniper Junos	Version 16.1 r3
Juniper Junos	Version 16.1 r5-s4
Juniper Junos	Version 16.1 r6-s1
Juniper Junos	Version 16.1 r7

Configuration L

4 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 16.2
Juniper Junos	Version 16.2 r1
Juniper Junos	Version 16.2 r2-s5
Juniper Junos	Version 16.2 r3

Configuration M

4 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 17.1
Juniper Junos	Version 17.1 r1
Juniper Junos	Version 17.1 r2-s7
Juniper Junos	Version 17.1 r3

Configuration N

5 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 17.2
Juniper Junos	Version 17.2 r1
Juniper Junos	Version 17.2 r2-s4
Juniper Junos	Version 17.2 r2
Juniper Junos	Version 17.2 r3

Configuration O

2 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 17.2x75
Juniper Junos	Version 17.2x75 d110

Configuration P

5 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 17.3
Juniper Junos	Version 17.3 r1
Juniper Junos	Version 17.3 r2-s2
Juniper Junos	Version 17.3 r2
Juniper Junos	Version 17.3 r3

Configuration Q

3 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 17.4
Juniper Junos	Version 17.4 r1
Juniper Junos	Version 17.4 r2

Configuration R

2 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 18.1
Juniper Junos	Version 18.1 r1

Configuration S

1 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 18.2x75

Related CWEs

CWE-400

Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (4)

http://www.securitytracker.com/id/1041326

Source: sirt@juniper.net

Third Party AdvisoryVDB Entry

https://kb.juniper.net/JSA10865

Source: sirt@juniper.net

Vendor Advisory

http://www.securitytracker.com/id/1041326

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://kb.juniper.net/JSA10865

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.