CVE-2021-0202 Junos OS: MX Series, EX9200 Series: Trio-based MPC memory leak when Integrated Routing and Bridging (IRB) interface is mapped to a VPLS instance or a Bridge-Domain

🗓️ 15 Jan 2021 17:35:51Reported by juniperType

Junos OS memory leak in Trio-based MP

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerability of the Integrated Routing and Bridging (IRB) interface in Junos operating system routers of the EX9200 and MX series allows a attacker to cause a service failure.	25 Feb 202100:00	–	bdu_fstec
CNNVD	Juniper Networks MX Series and EX9200 Series Resource Management Error Vulnerability	13 Jan 202100:00	–	cnnvd
CVE	CVE-2021-0202	15 Jan 202117:35	–	cve
EUVD	EUVD-2021-2821	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS DoS (JSA11092)	14 Jan 202100:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper Junos OS	14 Jan 202100:00	–	ncsc
NVD	CVE-2021-0202	15 Jan 202118:15	–	nvd
Prion	Heap overflow	15 Jan 202118:15	–	prion
Positive Technologies	PT-2021-2135 · Juniper Networks · Junos	13 Jan 202100:00	–	ptsecurity

[
  {
    "platforms": [
      "MX Series, EX9200 Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "17.3R3-S8"
      },
      {
        "status": "affected",
        "version": "17.4R3-S2"
      },
      {
        "status": "unaffected",
        "version": "18.1"
      },
      {
        "status": "unaffected",
        "version": "19.1"
      },
      {
        "status": "unaffected",
        "version": "19.3"
      },
      {
        "status": "unaffected",
        "version": "20.1"
      },
      {
        "changes": [
          {
            "at": "18.2R3-S6",
            "status": "unaffected"
          }
        ],
        "lessThan": "18.2*",
        "status": "affected",
        "version": "18.2R3-S4",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "18.3R3-S4",
            "status": "unaffected"
          }
        ],
        "lessThan": "18.3*",
        "status": "affected",
        "version": "18.3R3-S2",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "18.4R3-S6",
            "status": "unaffected"
          }
        ],
        "lessThan": "18.4*",
        "status": "affected",
        "version": "18.4R3-S1",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "19.2R3-S1",
            "status": "unaffected"
          }
        ],
        "lessThan": "19.2*",
        "status": "affected",
        "version": "19.2R2",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "19.4R2-S3, 19.4R3",
            "status": "unaffected"
          }
        ],
        "lessThan": "19.4*",
        "status": "affected",
        "version": "19.4R2",
        "versionType": "custom"
      },
      {
        "changes": [
          {
            "at": "20.2R1-S3, 20.2R2",
            "status": "unaffected"
          }
        ],
        "lessThan": "20.2*",
        "status": "affected",
        "version": "20.2R1",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
kb	www.kb.juniper.net/JSA11092

15 Jan 2021 17:35Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.5

EPSS0.00389