PT-2021-12941 · Juniper Networks · Junos
Published
2021-04-22
·
Updated
2021-04-27
·
CVE-2021-0227
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Junos OS versions prior to 17.3R3-S9
Junos OS versions prior to 17.4R2-S11
Junos OS versions prior to 17.4R3-S2
Junos OS versions prior to 18.2R3-S5
Junos OS versions prior to 18.3R2-S4
Junos OS versions prior to 18.3R3-S3
Junos OS versions prior to 18.4R2-S5
Junos OS versions prior to 18.4R3-S4
Junos OS versions prior to 19.1R3-S2
Junos OS versions prior to 19.2R1-S5
Junos OS versions prior to 19.2R3
Junos OS versions prior to 19.3R3
Junos OS versions prior to 19.4R2-S1
Junos OS versions prior to 19.4R3
Junos OS versions prior to 20.1R1-S2
Junos OS versions prior to 20.1R2
Description:
An issue in Juniper Networks Junos OS J-Web on SRX Series devices allows an attacker to cause Denial of Service (DoS) by sending certain crafted HTTP packets. Continued receipt and processing of these packets will create a sustained Denial of Service (DoS) condition. This can cause the web-management, NTP daemon (ntpd), and Layer 2 Control Protocol process (L2CPD) daemons to crash.
Recommendations:
As a temporary workaround, consider restricting access to the J-Web interface until a patch is available.
Update to a version of Junos OS that is not affected by this issue, such as 17.3R3-S9 or later, 17.4R2-S11 or later, 17.4R3-S2 or later, 18.2R3-S5 or later, 18.3R2-S4 or later, 18.3R3-S3 or later, 18.4R2-S5 or later, 18.4R3-S4 or later, 19.1R3-S2 or later, 19.2R1-S5 or later, 19.2R3 or later, 19.3R3 or later, 19.4R2-S1 or later, 19.4R3 or later, 20.1R1-S2 or later, or 20.1R2 or later.
Fix
DoS
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos