Lucene search

[email protected]CVE-2019-0036

HistoryApr 10, 2019 - 8:29 p.m.

CVE-2019-0036

2019-04-1020:29:00

CWE-284

CWE-754

[email protected]

web.nvd.nist.gov

junos os

juniper networks

firewall

vulnerability

cve-2019-0036

security issue

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.5%

JSON

When configuring a stateless firewall filter in Junos OS, terms named using the format “internal-n” (e.g. “internal-1”, “internal-2”, etc.) are silently ignored. No warning is issued during configuration, and the config is committed without error, but the filter criteria will match all packets leading to unexpected results. Affected releases are Juniper Networks Junos OS: All versions prior to and including 12.3; 14.1X53 versions prior to 14.1X53-D130, 14.1X53-D49; 15.1 versions prior to 15.1F6-S12, 15.1R7-S4; 15.1X49 versions prior to 15.1X49-D161, 15.1X49-D170; 15.1X53 versions prior to 15.1X53-D236, 15.1X53-D496, 15.1X53-D69; 16.1 versions prior to 16.1R7-S4, 16.1R7-S5; 16.2 versions prior to 16.2R2-S9; 17.1 versions prior to 17.1R3; 17.2 versions prior to 17.2R1-S8, 17.2R3-S1; 17.3 versions prior to 17.3R3-S4; 17.4 versions prior to 17.4R1-S7, 17.4R2-S3; 18.1 versions prior to 18.1R2-S4, 18.1R3-S4; 18.2 versions prior to 18.2R1-S5, 18.2R2-S1; 18.2X75 versions prior to 18.2X75-D40; 18.3 versions prior to 18.3R1-S3; 18.4 versions prior to 18.4R1-S1, 18.4R1-S2.

Affected configurations

NVD

Node

juniperjunosMatch15.1-

juniperjunosMatch15.1f1

juniperjunosMatch15.1f2

juniperjunosMatch15.1f3

juniperjunosMatch15.1f4

juniperjunosMatch15.1f5

juniperjunosMatch15.1f6

juniperjunosMatch15.1r1

juniperjunosMatch15.1r2

juniperjunosMatch15.1r3

juniperjunosMatch15.1r4

juniperjunosMatch15.1r5

juniperjunosMatch15.1r6

juniperjunosMatch15.1f6-s1f6

juniperjunosMatch15.1f6-s2f6

juniperjunosMatch15.1f6-s4f6

juniperjunosMatch15.1f6-s5f6

juniperjunosMatch15.1f6-s6f6

juniperjunosMatch15.1f6-s7f6

juniperjunosMatch15.1f6-s8f6

juniperjunosMatch15.1f6-s9f6

juniperjunosMatch15.1f6-s10f6

juniperjunosMatch15.1f6-s11f6

Node

juniperjunosMatch15.1x49d10

juniperjunosMatch15.1x49d100

juniperjunosMatch15.1x49d110

juniperjunosMatch15.1x49d120

juniperjunosMatch15.1x49d130

juniperjunosMatch15.1x49d150

juniperjunosMatch15.1x49d20

juniperjunosMatch15.1x49d30

juniperjunosMatch15.1x49d35

juniperjunosMatch15.1x49d40

juniperjunosMatch15.1x49d45

juniperjunosMatch15.1x49d50

juniperjunosMatch15.1x49d55

juniperjunosMatch15.1x49d60

juniperjunosMatch15.1x49d65

juniperjunosMatch15.1x49d70

juniperjunosMatch15.1x49d75

juniperjunosMatch15.1x49d80

juniperjunosMatch15.1x49d90

Node

juniperjunosMatch15.1x53d10

juniperjunosMatch15.1x53d20

juniperjunosMatch15.1x53d21

juniperjunosMatch15.1x53d210

juniperjunosMatch15.1x53d230

juniperjunosMatch15.1x53d231

juniperjunosMatch15.1x53d232

juniperjunosMatch15.1x53d233

juniperjunosMatch15.1x53d25

juniperjunosMatch15.1x53d30

juniperjunosMatch15.1x53d32

juniperjunosMatch15.1x53d33

juniperjunosMatch15.1x53d34

juniperjunosMatch15.1x53d40

juniperjunosMatch15.1x53d45

juniperjunosMatch15.1x53d495

juniperjunosMatch15.1x53d56

juniperjunosMatch15.1x53d60

juniperjunosMatch15.1x53d61

juniperjunosMatch15.1x53d62

juniperjunosMatch15.1x53d63

Node

juniperjunosMatch16.1r1

juniperjunosMatch16.1r2

juniperjunosMatch16.1r3

juniperjunosMatch16.1r4

juniperjunosMatch16.1r5

juniperjunosMatch16.1r6

juniperjunosMatch16.1r7

Node

juniperjunosMatch17.3r1

juniperjunosMatch17.3r2

juniperjunosMatch17.3r3-

juniperjunosMatch17.3r3-s1

juniperjunosMatch17.3r3-s2

juniperjunosMatch17.3r3-s3

Node

juniperjunosMatch17.2r1

juniperjunosMatch17.2r1-s7

juniperjunosMatch17.2r2

juniperjunosMatch17.2r3

Node

juniperjunosMatch17.4r1

juniperjunosMatch17.4r2

Node

juniperjunosMatch18.1r1

juniperjunosMatch18.1r2

Node

juniperjunosMatch18.2r1-

juniperjunosMatch18.2r1-s3

juniperjunosMatch18.2r2-s1

juniperjunosMatch18.2r2-s2

Node

juniperjunosMatch18.3r1-s1

Node

juniperjunosMatch18.2x75-

Node

juniperjunosRange≤12.3

Node

juniperjunosMatch14.1x53-

juniperjunosMatch14.1x53d10

juniperjunosMatch14.1x53d15

juniperjunosMatch14.1x53d16

juniperjunosMatch14.1x53d25

juniperjunosMatch14.1x53d26

juniperjunosMatch14.1x53d27

juniperjunosMatch14.1x53d30

juniperjunosMatch14.1x53d35

juniperjunosMatch14.1x53d40

juniperjunosMatch14.1x53d42

juniperjunosMatch14.1x53d43

juniperjunosMatch14.1x53d44

juniperjunosMatch14.1x53d45

juniperjunosMatch14.1x53d46

juniperjunosMatch14.1x53d47

juniperjunosMatch14.1x53d48

Node

juniperjunosMatch18.4r1

CPENameOperatorVersion
juniper:junosjuniper junoseq15.1
juniper:junosjuniper junoseq15.1f6-s1
juniper:junosjuniper junoseq15.1f6-s2
juniper:junosjuniper junoseq15.1f6-s4
juniper:junosjuniper junoseq15.1f6-s5
juniper:junosjuniper junoseq15.1f6-s6
juniper:junosjuniper junoseq15.1f6-s7
juniper:junosjuniper junoseq15.1f6-s8
juniper:junosjuniper junoseq15.1f6-s9
juniper:junosjuniper junoseq15.1f6-s10

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	15.1
juniper:junos	juniper junos	eq	15.1f6-s1
juniper:junos	juniper junos	eq	15.1f6-s2
juniper:junos	juniper junos	eq	15.1f6-s4
juniper:junos	juniper junos	eq	15.1f6-s5
juniper:junos	juniper junos	eq	15.1f6-s6
juniper:junos	juniper junos	eq	15.1f6-s7
juniper:junos	juniper junos	eq	15.1f6-s8
juniper:junos	juniper junos	eq	15.1f6-s9
juniper:junos	juniper junos	eq	15.1f6-s10

Rows per page:

1-10 of 111

CNA Affected

[
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "12.1X46"
      },
      {
        "status": "affected",
        "version": "12.3X48"
      },
      {
        "status": "affected",
        "version": "12.3"
      },
      {
        "lessThan": "14.1X53-D130, 14.1X53-D49",
        "status": "affected",
        "version": "14.1X53",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1F6-S12, 15.1R7-S4",
        "status": "affected",
        "version": "15.1",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1X49-D161, 15.1X49-D170",
        "status": "affected",
        "version": "15.1X49",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1X53-D236, 15.1X53-D496, 15.1X53-D69",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      },
      {
        "lessThan": "16.1R7-S4, 16.1R7-S5",
        "status": "affected",
        "version": "16.1",
        "versionType": "custom"
      },
      {
        "lessThan": "16.2R2-S9",
        "status": "affected",
        "version": "16.2",
        "versionType": "custom"
      },
      {
        "lessThan": "17.1R3",
        "status": "affected",
        "version": "17.1",
        "versionType": "custom"
      },
      {
        "lessThan": "17.2R1-S8, 17.2R3-S1",
        "status": "affected",
        "version": "17.2",
        "versionType": "custom"
      },
      {
        "lessThan": "17.3R3-S4",
        "status": "affected",
        "version": "17.3",
        "versionType": "custom"
      },
      {
        "lessThan": "17.4R1-S7, 17.4R2-S3",
        "status": "affected",
        "version": "17.4",
        "versionType": "custom"
      },
      {
        "lessThan": "18.1R2-S4, 18.1R3-S4",
        "status": "affected",
        "version": "18.1",
        "versionType": "custom"
      },
      {
        "lessThan": "18.2R1-S5, 18.2R2-S1",
        "status": "affected",
        "version": "18.2",
        "versionType": "custom"
      },
      {
        "lessThan": "18.2X75-D40",
        "status": "affected",
        "version": "18.2X75",
        "versionType": "custom"
      },
      {
        "lessThan": "18.3R1-S3",
        "status": "affected",
        "version": "18.3",
        "versionType": "custom"
      },
      {
        "lessThan": "18.4R1-S1, 18.4R1-S2",
        "status": "affected",
        "version": "18.4",
        "versionType": "custom"
      }
    ]
  }
]

References

kb.juniper.net/JSA10925

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.5%

JSON

Related for CVE-2019-0036

cvelist1 nvd1 prion1 nessus1