CVE-2018-0004 Junos OS: Kernel Denial of Service Vulnerability

🗓️ 10 Jan 2018 22:00:00Reported by juniperType

A high CPU consumption denial of service vulnerability in Junos OS can cause device inaccessibility and traffic forwarding issues upon receiving transit traffic

Reporter	Title	Published	Views	Family All 8
BDU FSTEC	The vulnerability of the Junos operating system, related to uncontrolled resource consumption, allows a perpetrator to trigger a service failure.	12 Apr 201800:00	–	bdu_fstec
CISA	Juniper Networks Releases Security Updates	11 Jan 201800:00	–	cisa
CVE	CVE-2018-0004	10 Jan 201822:00	–	cve
EUVD	EUVD-2018-0829	7 Oct 202500:30	–	euvd
Tenable Nessus	Juniper Junos Kernel Register and Schedule Software Interrupt Handler Subsystem CPU Consumption Remote DoS (JSA10832)	26 Jan 201800:00	–	nessus
NVD	CVE-2018-0004	10 Jan 201822:29	–	nvd
OSV	CVE-2018-0004	10 Jan 201822:29	–	osv
Prion	Design/Logic Flaw	10 Jan 201822:29	–	prion

[
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "12.1X46-D50",
        "status": "affected",
        "version": "12.1X46",
        "versionType": "custom"
      },
      {
        "lessThan": "12.3X48-D30",
        "status": "affected",
        "version": "12.3X48",
        "versionType": "custom"
      },
      {
        "lessThan": "12.3R12-S7",
        "status": "affected",
        "version": "12.3R",
        "versionType": "custom"
      },
      {
        "lessThan": "14.1R8-S4, 14.1R9",
        "status": "affected",
        "version": "14.1",
        "versionType": "custom"
      },
      {
        "lessThan": "14.1X53-D30, 14.1X53-D34",
        "status": "affected",
        "version": "14.1X53",
        "versionType": "custom"
      },
      {
        "lessThan": "14.2R8",
        "status": "affected",
        "version": "14.2",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1F6, 15.1R3",
        "status": "affected",
        "version": "15.1",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1X49-D40",
        "status": "affected",
        "version": "15.1X49",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1X53-D31, 15.1X53-D33, 15.1X53-D60",
        "status": "affected",
        "version": "15.1X53",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
kb	www.kb.juniper.net/JSA10832
securitytracker	www.securitytracker.com/id/1040183

19 Jan 2018 10:57Current

6.5Medium risk

Vulners AI Score6.5

CVSS 36.5

EPSS0.00288

junos os denial of service vulnerability cpu consumption inaccessibility transit traffic forwarding issues