CVE-2018-0018

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 12.1X46-D60 on SRX Junos OS versions prior to 12.3X48-D35 on SRX Junos OS versions prior to 15.1X49-D60 on SRX

Description: An issue exists where an attacker sending specially crafted packets may be able to bypass firewall rules, leading to information disclosure. This could allow an attacker to gain control of the target device or other internal devices, systems, or services protected by the SRX Series device. The issue only applies to devices where IDP policies are applied to one or more rules.

Recommendations: For Junos OS versions prior to 12.1X46-D60 on SRX, update to version 12.1X46-D60 or later. For Junos OS versions prior to 12.3X48-D35 on SRX, update to version 12.3X48-D35 or later. For Junos OS versions prior to 15.1X49-D60 on SRX, update to version 15.1X49-D60 or later.