CVE-2020-1656

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 12.3R12-S15 Junos OS versions prior to 12.3X48-D95 Junos OS versions prior to 14.1X53-D53 Junos OS versions prior to 15.1R7-S6 Junos OS versions prior to 15.1X49-D200 Junos OS versions prior to 15.1X53-D593 Junos OS versions prior to 16.1R7-S7 Junos OS versions prior to 16.2R2-S11 Junos OS versions prior to 17.1R2-S11 Junos OS versions prior to 17.1R3-S2 Junos OS versions prior to 17.2R3-S3 Junos OS versions prior to 17.2X75-D44 Junos OS versions prior to 17.3R3-S7 Junos OS versions prior to 17.4R2-S9 Junos OS versions prior to 17.4R3 Junos OS versions prior to 18.1R3-S9 Junos OS versions prior to 18.2R2-S6 Junos OS versions prior to 18.2R3-S2 Junos OS versions prior to 18.2X75-D12 Junos OS versions prior to 18.2X75-D33 Junos OS versions prior to 18.2X75-D435 Junos OS versions prior to 18.2X75-D60 Junos OS versions prior to 18.3R1-S7 Junos OS versions prior to 18.3R2-S3 Junos OS versions prior to 18.3R3-S1 Junos OS versions prior to 18.4R1-S5 Junos OS versions prior to 18.4R2-S3 Junos OS versions prior to 18.4R3 Junos OS versions prior to 19.1R1-S4 Junos OS versions prior to 19.1R2 Junos OS versions prior to 19.2R1-S3 Junos OS versions prior to 19.2R2 Junos OS versions prior to 19.3R2

Description The Juniper Enhanced jdhcpd daemon in Junos OS has an Improper Input Validation issue. This can cause a Denial of Service (DoS) condition when a DHCPv6 client sends a specific DHCPv6 message, potentially allowing an attacker to perform a Remote Code Execution (RCE) attack. Continuous receipt of the message will result in an extended DoS condition. If adjacent devices are configured to relay DHCP packets and are not affected, the attack vector can be network-based. No other DHCP services are affected, and receipt of the packet without the DHCPv6 Relay-Agent service configuration will not result in exploitability.

Recommendations For Junos OS versions prior to 12.3R12-S15, update to 12.3R12-S15 or later. For Junos OS versions prior to 12.3X48-D95, update to 12.3X48-D95 or later. For Junos OS versions prior to 14.1X53-D53, update to 14.1X53-D53 or later. For Junos OS versions prior to 15.1R7-S6, update to 15.1R7-S6 or later. For Junos OS versions prior to 15.1X49-D200, update to 15.1X49-D200 or later. For Junos OS versions prior to 15.1X53-D593, update to 15.1X53-D593 or later. For Junos OS versions prior to 16.1R7-S7, update to 16.1R7-S7 or later. For Junos OS versions prior to 16.2R2-S11, update to 16.2R2-S11 or later. For Junos OS versions prior to 17.1R2-S11, update to 17.1R2-S11 or later. For Junos OS versions prior to 17.1R3-S2, update to 17.1R3-S2 or later. For Junos OS versions prior to 17.2R3-S3, update to 17.2R3-S3 or later. For Junos OS versions prior to 17.2X75-D44, update to 17.2X75-D44 or later. For Junos OS versions prior to 17.3R3-S7, update to 17.3R3-S7 or later. For Junos OS versions prior to 17.4R2-S9, update to 17.4R2-S9 or later. For Junos OS versions prior to 17.4R3, update to 17.4R3 or later. For Junos OS versions prior to 18.1R3-S9, update to 18.1R3-S9 or later. For Junos OS versions prior to 18.2R2-S6, update to 18.2R2-S6 or later. For Junos OS versions prior to 18.2R3-S2, update to 18.2R3-S2 or later. For Junos OS versions prior to 18.2X75-D12, update to 18.2X75-D12 or later. For Junos OS versions prior to 18.2X75-D33, update to 18.2X75-D33 or later. For Junos OS versions prior to 18.2X75-D435, update to 18.2X75-D435 or later. For Junos OS versions prior to 18.2X75-D60, update to 18.2X75-D60 or later. For Junos OS versions prior to 18.3R1-S7, update to 18.3R1-S7 or later. For Junos OS versions prior to 18.3R2-S3, update to 18.3R2-S3 or later. For Junos OS versions prior to 18.3R3-S1, update to 18.3R3-S1 or later. For Junos OS versions prior to 18.4R1-S5, update to 18.4R1-S5 or later. For Junos OS versions prior to 18.4R2-S3, update to 18.4R2-S3 or later. For Junos OS versions prior to 18.4R3, update to 18.4R3 or later. For Junos OS versions prior to 19.1R1-S4, update to 19.1R1-S4 or later. For Junos OS versions prior to 19.1R2, update to 19.1R2 or later. For Junos OS versions prior to 19.2R1-S3, update to 19.2R1-S3 or later. For Junos OS versions prior to 19.2R2, update to 19.2R2 or later. For Junos OS versions prior to 19.3R2, update to 19.3R2 or later.