CVE-2018-0048

Name of the Vulnerable Software and Affected Versions Junos OS versions 17.2R1 through 17.2R1-S7, 17.2R2-S6, 17.2R3 Junos OS versions 17.2X75 prior to 17.2X75-D102, 17.2X75-D110 Junos OS versions 17.3 prior to 17.3R2-S4, 17.3R3 Junos OS versions 17.4 prior to 17.4R1-S5, 17.4R2 Junos OS versions 18.1 prior to 18.1R2-S3, 18.1R3

Description A vulnerability in the Routing Protocols Daemon (RPD) with Juniper Extension Toolkit (JET) support can allow a network-based unauthenticated attacker to cause a severe memory exhaustion condition on the device. This can have an adverse impact on the system performance and availability.

Recommendations For Junos OS versions 17.2R1 through 17.2R1-S7, 17.2R2-S6, 17.2R3, update to version 17.2R1-S7, 17.2R2-S6, or 17.2R3 or later. For Junos OS versions 17.2X75 prior to 17.2X75-D102, 17.2X75-D110, update to version 17.2X75-D102 or 17.2X75-D110 or later. For Junos OS versions 17.3 prior to 17.3R2-S4, 17.3R3, update to version 17.3R2-S4 or 17.3R3 or later. For Junos OS versions 17.4 prior to 17.4R1-S5, 17.4R2, update to version 17.4R1-S5 or 17.4R2 or later. For Junos OS versions 18.1 prior to 18.1R2-S3, 18.1R3, update to version 18.1R2-S3 or 18.1R3 or later.