CVE-2020-1651 Junos OS: MX Series: PFE on the line card may crash due to memory leak.

🗓️ 17 Jul 2020 18:40:43Reported by juniperType

Junos OS: MX Series PFE crash due to memory leak from specific Layer 2 frame

Reporter	Title	Published	Views	Family All 8
BDU FSTEC	The vulnerability of the Packet Forwarding Engine (PFE) module in the JunOS operating system for MX series routers allows a hacker to cause a service failure.	14 Apr 202100:00	–	bdu_fstec
CNVD	Juniper Networks Junos OS Code Issue Vulnerability (CNVD-2020-51515)	12 Jul 202000:00	–	cnvd
CVE	CVE-2020-1651	17 Jul 202018:40	–	cve
EUVD	EUVD-2020-12516	7 Oct 202500:30	–	euvd
Tenable Nessus	Juniper Junos MX Series PFE DoS (JSA11038)	24 Jul 202000:00	–	nessus
NVD	CVE-2020-1651	17 Jul 202019:15	–	nvd
OSV	CVE-2020-1651	17 Jul 202019:15	–	osv
Prion	Memory corruption	17 Jul 202019:15	–	prion

[
  {
    "platforms": [
      "MX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "17.2R1",
        "status": "unaffected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "17.2R3-S4",
        "status": "affected",
        "version": "17.2",
        "versionType": "custom"
      },
      {
        "lessThan": "17.2X75-D105.19",
        "status": "affected",
        "version": "17.2X75",
        "versionType": "custom"
      },
      {
        "lessThan": "17.3R3-S7",
        "status": "affected",
        "version": "17.3",
        "versionType": "custom"
      },
      {
        "lessThan": "17.4R1-S3, 17.4R2",
        "status": "affected",
        "version": "17.4",
        "versionType": "custom"
      },
      {
        "lessThan": "18.1R2",
        "status": "affected",
        "version": "18.1",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
kb	www.kb.juniper.net/JSA11038

17 Jul 2020 18:40Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.16.5

EPSS0.00454

CWE-19