CVE-2018-0009
Last modified
CVE-2018-0009 is a vulnerability of currently unknown severity. On Juniper Networks SRX series devices, firewall rules configured to match custom application UUIDs starting with zeros can match all TCP traffic. Due to this issue, traffic that should have been blocked by other rules is permitted to flow through the device resulting in a firewall bypass condition. EPSS estimates a 1.27% chance of exploitation in the next 30 days.
Description
On Juniper Networks SRX series devices, firewall rules configured to match custom application UUIDs starting with zeros can match all TCP traffic. Due to this issue, traffic that should have been blocked by other rules is permitted to flow through the device resulting in a firewall bypass condition. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D71 on SRX series; 12.3X48 versions prior to 12.3X48-D55 on SRX series; 15.1X49 versions prior to 15.1X49-D100 on SRX series.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos | 12.1x46 |
| Juniper | Junos | 12.3x48 |
| Juniper | Junos | 15.1x49 |
References
- http://www.securityfocus.com/bid/102491Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1040187Third Party Advisory, VDB Entry
- https://kb.juniper.net/JSA10836Mitigation, Patch, Vendor Advisory
- http://www.securityfocus.com/bid/102491Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1040187Third Party Advisory, VDB Entry
- https://kb.juniper.net/JSA10836Mitigation, Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-0009?
How severe is CVE-2018-0009?
How do I fix CVE-2018-0009?
Are you affected by CVE-2018-0009?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST