CVE-2020-1686

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 18.4R1 through 18.4R2-S4 Juniper Networks Junos OS versions 18.4R3 through 18.4R3-S1 Juniper Networks Junos OS versions 19.1 through 19.1R2-S1 Juniper Networks Junos OS versions 19.1R3 and earlier Juniper Networks Junos OS versions 19.2 through 19.2R1-S5 Juniper Networks Junos OS versions 19.2R2 and earlier Juniper Networks Junos OS versions 19.3 through 19.3R2-S4 Juniper Networks Junos OS versions 19.3R3 and earlier Juniper Networks Junos OS versions 19.4 through 19.4R1-S3 Juniper Networks Junos OS versions 19.4R2 and earlier

Description The issue is caused by the receipt of a malformed IPv6 packet, which can trigger a system crash and restart. This can be exploited by an attacker to create an extended Denial of Service condition by repeatedly sending the offending packet. The issue only affects IPv6 packets and does not impact IPv4 packets.

Recommendations For Juniper Networks Junos OS versions 18.4R1 through 18.4R2-S4, update to version 18.4R2-S4 or later. For Juniper Networks Junos OS versions 18.4R3 through 18.4R3-S1, update to version 18.4R3-S1 or later. For Juniper Networks Junos OS versions 19.1 through 19.1R2-S1, update to version 19.1R2-S1 or later. For Juniper Networks Junos OS versions 19.1R3 and earlier, update to version 19.1R3 or later. For Juniper Networks Junos OS versions 19.2 through 19.2R1-S5, update to version 19.2R1-S5 or later. For Juniper Networks Junos OS versions 19.2R2 and earlier, update to version 19.2R2 or later. For Juniper Networks Junos OS versions 19.3 through 19.3R2-S4, update to version 19.3R2-S4 or later. For Juniper Networks Junos OS versions 19.3R3 and earlier, update to version 19.3R3 or later. For Juniper Networks Junos OS versions 19.4 through 19.4R1-S3, update to version 19.4R1-S3 or later. For Juniper Networks Junos OS versions 19.4R2 and earlier, update to version 19.4R2 or later.