CVE-2020-1670

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS on EX4300 series versions 17.3 prior to 17.3R3-S9 Juniper Networks Junos OS on EX4300 series versions 17.4 prior to 17.4R2-S11 Juniper Networks Junos OS on EX4300 series versions 17.4 prior to 17.4R3-S2 Juniper Networks Junos OS on EX4300 series versions 18.1 prior to 18.1R3-S10 Juniper Networks Junos OS on EX4300 series versions 18.2 prior to 18.2R3-S4 Juniper Networks Junos OS on EX4300 series versions 18.3 prior to 18.3R2-S4 Juniper Networks Junos OS on EX4300 series versions 18.3 prior to 18.3R3-S2 Juniper Networks Junos OS on EX4300 series versions 18.4 prior to 18.4R2-S4 Juniper Networks Junos OS on EX4300 series versions 18.4 prior to 18.4R3-S2 Juniper Networks Junos OS on EX4300 series versions 19.1 prior to 19.1R2-S2 Juniper Networks Junos OS on EX4300 series versions 19.1 prior to 19.1R3-S1 Juniper Networks Junos OS on EX4300 series versions 19.2 prior to 19.2R1-S5 Juniper Networks Junos OS on EX4300 series versions 19.2 prior to 19.2R2-S1 Juniper Networks Junos OS on EX4300 series versions 19.2 prior to 19.2R3 Juniper Networks Junos OS on EX4300 series versions 19.3 prior to 19.3R2-S4 Juniper Networks Junos OS on EX4300 series versions 19.3 prior to 19.3R3 Juniper Networks Junos OS on EX4300 series versions 19.4 prior to 19.4R1-S3 Juniper Networks Junos OS on EX4300 series versions 19.4 prior to 19.4R2 Juniper Networks Junos OS on EX4300 series versions 20.1 prior to 20.1R1-S3 Juniper Networks Junos OS on EX4300 series versions 20.1 prior to 20.1R2

Description The issue occurs when specific IPv4 packets enter the IRB interface, causing a high CPU load on the Routing Engine, which could lead to network protocol operation issues and traffic interruption. This issue can only be triggered by IPv4 packets originating from within the broadcast domain where the device is connected. IPv6 packets cannot trigger this issue.

Recommendations For Juniper Networks Junos OS on EX4300 series version 17.3, update to version 17.3R3-S9 or later. For Juniper Networks Junos OS on EX4300 series version 17.4, update to version 17.4R2-S11 or 17.4R3-S2 or later. For Juniper Networks Junos OS on EX4300 series version 18.1, update to version 18.1R3-S10 or later. For Juniper Networks Junos OS on EX4300 series version 18.2, update to version 18.2R3-S4 or later. For Juniper Networks Junos OS on EX4300 series version 18.3, update to version 18.3R2-S4 or 18.3R3-S2 or later. For Juniper Networks Junos OS on EX4300 series version 18.4, update to version 18.4R2-S4 or 18.4R3-S2 or later. For Juniper Networks Junos OS on EX4300 series version 19.1, update to version 19.1R2-S2 or 19.1R3-S1 or later. For Juniper Networks Junos OS on EX4300 series version 19.2, update to version 19.2R1-S5 or 19.2R2-S1 or 19.2R3 or later. For Juniper Networks Junos OS on EX4300 series version 19.3, update to version 19.3R2-S4 or 19.3R3 or later. For Juniper Networks Junos OS on EX4300 series version 19.4, update to version 19.4R1-S3 or 19.4R2 or later. For Juniper Networks Junos OS on EX4300 series version 20.1, update to version 20.1R1-S3 or 20.1R2 or later.