CVE-2019-0041

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 18.2R1-S2 Junos OS version 18.2R2

Description The issue is related to errors in security settings, allowing a remote attacker to impact the integrity and availability of protected information. On EX4300-MP Series devices with any lo0 filters applied, transit network traffic may reach the control plane via loopback interface, potentially causing the device to fail to forward such traffic.

Recommendations For Junos OS versions prior to 18.2R1-S2, update to version 18.2R1-S2 or later. For Junos OS version 18.2R2, consider applying configuration changes to restrict access to the control plane via loopback interface until a patch is available.