CVE-2021-31376

Published: Oct 19, 2021Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: sirt@juniper.net (Secondary)

Description

An Improper Input Validation vulnerability in Packet Forwarding Engine manager (FXPC) process of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) by sending specific DHCPv6 packets to the device and crashing the FXPC service. Continued receipt and processing of this specific packet will create a sustained Denial of Service (DoS) condition. This issue affects only the following platforms in ACX Series: ACX500, ACX1000, ACX1100, ACX2100, ACX2200, ACX4000, ACX5048, ACX5096 devices. Other ACX platforms are not affected from this issue. This issue affects Juniper Networks Junos OS on ACX500, ACX1000, ACX1100, ACX2100, ACX2200, ACX4000, ACX5048, ACX5096: 18.4 version 18.4R3-S7 and later versions prior to 18.4R3-S8. This issue does not affect: Juniper Networks Junos OS 18.4 versions prior to 18.4R3-S7 on ACX500, ACX1000, ACX1100, ACX2100, ACX2200, ACX4000, ACX5048, ACX5096.

Affected (1)

Products: Juniper: Junos

Juniper

1 product

Junos

Configuration A

1 vulnerable · 8 platform

Vulnerable Software	Affected Versions
Juniper Junos	Version 18.4 r3-s7

Running on/with	Platform Versions
Juniper Acx1000	All versions
Juniper Acx1100	All versions
Juniper Acx2100	All versions
Juniper Acx2200	All versions
Juniper Acx4000	All versions
Juniper Acx500	All versions
Juniper Acx5048	All versions
Juniper Acx5096	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

https://kb.juniper.net/JSA11241

Source: sirt@juniper.net

Vendor Advisory

https://kb.juniper.net/JSA11241

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.