CVE-2020-1609

Name of the Vulnerable Software and Affected Versions Junos OS versions 15.1 through 19.2 Junos OS Evolved versions prior to 19.3R1

Description The issue affects the Dynamic Host Configuration Protocol Daemon (JDHCPD) process on Junos OS or Junos OS Evolved when configured in relay mode, allowing an attacker to send crafted IPv6 packets and execute commands as root on the target device. This issue specifically affects IPv6 JDHCPD services.

Recommendations For Junos OS versions 15.1 through 19.2, update to a version that is not affected by this issue, such as 19.3R1 or later. For Junos OS Evolved versions prior to 19.3R1, update to version 19.3R1 or later. As a temporary workaround, consider disabling the JDHCPD service in relay mode until a patch is available. Restrict access to the JDHCPD service to minimize the risk of exploitation.