CVE-2021-0214

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions 17.3 through 17.3R3-S10 Juniper Networks Junos OS versions 17.4 through 17.4R2-S11 Juniper Networks Junos OS versions 17.4R3 through 17.4R3-S3 Juniper Networks Junos OS versions 18.1 through 18.1R3-S11 Juniper Networks Junos OS versions 18.2 through 18.2R2-S7 Juniper Networks Junos OS versions 18.2R3 through 18.2R3-S6 Juniper Networks Junos OS versions 18.3 through 18.3R3-S3 Juniper Networks Junos OS versions 18.4 through 18.4R1-S7 Juniper Networks Junos OS versions 18.4R2 through 18.4R2-S6 Juniper Networks Junos OS versions 18.4R3 through 18.4R3-S5 Juniper Networks Junos OS versions 19.1 through 19.1R1-S5 Juniper Networks Junos OS versions 19.1R2 through 19.1R2-S1 Juniper Networks Junos OS versions 19.1R3 through 19.1R3-S3 Juniper Networks Junos OS versions 19.2 through 19.2R1-S4 Juniper Networks Junos OS versions 19.2R3 through 19.2R3-S0 Juniper Networks Junos OS versions 19.3 through 19.3R2-S4 Juniper Networks Junos OS versions 19.3R3 through 19.3R3-S0 Juniper Networks Junos OS versions 19.4 through 19.4R2-S1 Juniper Networks Junos OS versions 19.4R3 through 19.4R3-S0 Juniper Networks Junos OS versions 20.1 through 20.1R1 Juniper Networks Junos OS versions 20.2 through 20.2R1-S1

Description: A vulnerability in the distributed or centralized periodic packet management daemon (PPMD) of Juniper Networks Junos OS may cause receipt of a malformed packet to crash and restart the PPMD process, leading to network destabilization, service interruption, and a Denial of Service (DoS) condition. Continued receipt and processing of these malformed packets will repeatedly crash the PPMD process and sustain the Denial of Service (DoS) condition. Due to the nature of the specifically crafted packet, exploitation of this issue requires direct, adjacent connectivity to the vulnerable component.

Recommendations: For Juniper Networks Junos OS versions 17.3 through 17.3R3-S10, update to version 17.3R3-S11 or later. For Juniper Networks Junos OS versions 17.4 through 17.4R2-S11, update to version 17.4R2-S12 or later. For Juniper Networks Junos OS versions 17.4R3 through 17.4R3-S3, update to version 17.4R3-S4 or later. For Juniper Networks Junos OS versions 18.1 through 18.1R3-S11, update to version 18.1R3-S12 or later. For Juniper Networks Junos OS versions 18.2 through 18.2R2-S7, update to version 18.2R2-S8 or later. For Juniper Networks Junos OS versions 18.2R3 through 18.2R3-S6, update to version 18.2R3-S7 or later. For Juniper Networks Junos OS versions 18.3 through 18.3R3-S3, update to version 18.3R3-S4 or later. For Juniper Networks Junos OS versions 18.4 through 18.4R1-S7, update to version 18.4R1-S8 or later. For Juniper Networks Junos OS versions 18.4R2 through 18.4R2-S6, update to version 18.4R2-S7 or later. For Juniper Networks Junos OS versions 18.4R3 through 18.4R3-S5, update to version 18.4R3-S6 or later. For Juniper Networks Junos OS versions 19.1 through 19.1R1-S5, update to version 19.1R1-S6 or later. For Juniper Networks Junos OS versions 19.1R2 through 19.1R2-S1, update to version 19.1R2-S2 or later. For Juniper Networks Junos OS versions 19.1R3 through 19.1R3-S3, update to version 19.1R3-S4 or later. For Juniper Networks Junos OS versions 19.2 through 19.2R1-S4, update to version 19.2R1-S5 or later. For Juniper Networks Junos OS versions 19.2R3 through 19.2R3-S0, update to version 19.2R3-S1 or later. For Juniper Networks Junos OS versions 19.3 through 19.3R2-S4, update to version 19.3R2-S5 or later. For Juniper Networks Junos OS versions 19.3R3 through 19.3R3-S0, update to version 19.3R3-S1 or later. For Juniper Networks Junos OS versions 19.4 through 19.4R2-S1, update to version 19.4R2-S2 or later. For Juniper Networks Junos OS versions 19.4R3 through 19.4R3-S0, update to version 19.4R3 or later. For Juniper Networks Junos OS versions 20.1 through 20.1R1, update to version 20.1R2 or later. For Juniper Networks Junos OS versions 20.2 through 20.2R1-S1, update to version 20.2R1-S2 or later.