Lucene search

[email protected]CVE-2019-0002

HistoryJan 15, 2019 - 9:29 p.m.

CVE-2019-0002

2019-01-1521:29:00

CWE-794

[email protected]

web.nvd.nist.gov

cve-2019-0002

ex2300

ex3400

stateless firewall

policer

ipv4

ipv6

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.7%

JSON

On EX2300 and EX3400 series, stateless firewall filter configuration that uses the action ‘policer’ in combination with other actions might not take effect. When this issue occurs, the output of the command: show pfe filter hw summary will not show the entry for: RACL group Affected releases are Junos OS on EX2300 and EX3400 series: 15.1X53 versions prior to 15.1X53-D590; 18.1 versions prior to 18.1R3; 18.2 versions prior to 18.2R2. This issue affect both IPv4 and IPv6 firewall filter.

Affected configurations

NVD

Node

juniperjunosMatch15.1x53d50

juniperjunosMatch15.1x53d51

juniperjunosMatch15.1x53d52

juniperjunosMatch15.1x53d55

juniperjunosMatch15.1x53d57

juniperjunosMatch15.1x53d58

juniperjunosMatch15.1x53d59

juniperjunosMatch18.1-

juniperjunosMatch18.1r1

juniperjunosMatch18.1r2

juniperjunosMatch18.1r2-s1

juniperjunosMatch18.1r2-s2

juniperjunosMatch18.1r2-s4

juniperjunosMatch18.2-

juniperjunosMatch18.2r1

juniperjunosMatch18.2r1-s3

juniperjunosMatch18.2r1-s4

juniperjunosMatch18.2r1-s5

AND

juniperex2300Match-

juniperex3400Match-

CPENameOperatorVersion
juniper:junosjuniper junoseq15.1x53
juniper:junosjuniper junoseq18.1
juniper:junosjuniper junoseq18.2

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	15.1x53
juniper:junos	juniper junos	eq	18.1
juniper:junos	juniper junos	eq	18.2

CNA Affected

[
  {
    "platforms": [
      "EX2300 and EX3400 series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "15.1X53-D590",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      },
      {
        "lessThan": "18.1R3",
        "status": "affected",
        "version": "18.1",
        "versionType": "custom"
      },
      {
        "lessThan": "18.2R2",
        "status": "affected",
        "version": "18.2",
        "versionType": "custom"
      }
    ]
  }
]

References

www.securityfocus.com/bid/106669

kb.juniper.net/JSA10901

www.juniper.net/documentation/en_US/junos/topics/reference/command-summary/show-pfe-filter.html

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.7%

JSON

Related for CVE-2019-0002

nessus1 nvd1 prion1 cvelist1