PT-2019-2080 · Juniper Networks · Srx340+2
Published
2019-04-10
·
Updated
2021-10-25
·
CVE-2019-0038
CVSS v3.1
6.5
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Junos OS versions prior to 15.1X49-D160 on SRX340/SRX345
Junos OS version 17.3 on SRX340/SRX345
Junos OS versions prior to 17.4R2-S3, 17.4R3 on SRX340/SRX345
Junos OS versions prior to 18.1R3-S1 on SRX340/SRX345
Junos OS versions prior to 18.2R2 on SRX340/SRX345
Junos OS versions prior to 18.3R1-S2, 18.3R2 on SRX340/SRX345
Description
The issue is related to the management interface (fxp0) of SRX340 and SRX345 services gateways, which can create a denial of service (DoS) condition due to buffer space exhaustion. This is caused by errors in resource management. An attacker can exploit this issue to cause a disruption in service.
Recommendations
For Junos OS versions prior to 15.1X49-D160 on SRX340/SRX345, update to version 15.1X49-D160 or later.
For Junos OS version 17.3 on SRX340/SRX345, update to a later version.
For Junos OS versions prior to 17.4R2-S3, 17.4R3 on SRX340/SRX345, update to version 17.4R2-S3, 17.4R3 or later.
For Junos OS versions prior to 18.1R3-S1 on SRX340/SRX345, update to version 18.1R3-S1 or later.
For Junos OS versions prior to 18.2R2 on SRX340/SRX345, update to version 18.2R2 or later.
For Junos OS versions prior to 18.3R1-S2, 18.3R2 on SRX340/SRX345, update to version 18.3R1-S2, 18.3R2 or later.
Fix
DoS
Allocation of Resources Without Limits
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Junos
Srx340
Srx345