PT-2021-12971 · Juniper Networks · Junos

Published

2021-04-22

Updated

2021-05-04

CVE-2021-0262

CVSS v3.1

6.5

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Junos OS versions 19.1R3-S1 through 19.1R3-S2 Junos OS versions 19.2R2 through 19.2R3-S0 Junos OS versions 20.2 through 20.2R1-S1

Description: A Use After Free vulnerability was identified in PFE packet processing on the QFX10002-60C switching platform. This issue may allow a logically adjacent attacker to trigger a Denial of Service (DoS), and continued exploitation will sustain the DoS condition.

Recommendations: For Junos OS version 19.1, update to version 19.1R3-S3 or later. For Junos OS version 19.2, update to version 19.2R3-S1 or later. For Junos OS version 20.2, update to version 20.2R1-S2 or later.

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

CVE-2021-0262

Affected Products

Junos

PT-2021-12971 · Juniper Networks · Junos

CVE-2021-0262

Weakness Enumeration

Related Identifiers

Affected Products

References · 3