CVE-2020-1626
Last modified
CVE-2020-1626 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. A vulnerability in Juniper Networks Junos OS Evolved may allow an attacker to cause a Denial of Service (DoS) by sending a high rate of specific packets to the device, resulting in a pfemand process crash. The pfemand process is responsible for packet forwarding on the device. EPSS estimates a 1.33% chance of exploitation in the next 30 days.
Description
A vulnerability in Juniper Networks Junos OS Evolved may allow an attacker to cause a Denial of Service (DoS) by sending a high rate of specific packets to the device, resulting in a pfemand process crash. The pfemand process is responsible for packet forwarding on the device. By continuously sending the packet flood, an attacker can repeatedly crash the pfemand process causing a sustained Denial of Service. This issue can only be triggered by traffic sent to the device. Transit traffic does not cause this issue. This issue affects all version of Junos OS Evolved prior to 19.1R1-EVO.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Juniper | Junos Os Evolved | 18.3 | R1 |
References
- https://kb.juniper.net/JSA11005Vendor Advisory
- https://tools.ietf.org/html/rfc6192Third Party Advisory
- https://kb.juniper.net/JSA11005Vendor Advisory
- https://tools.ietf.org/html/rfc6192Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-1626?
How severe is CVE-2020-1626?
How do I fix CVE-2020-1626?
Are you affected by CVE-2020-1626?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST