PT-2021-19267 · Juniper Networks · Junos

Published

2021-10-19

·

Updated

2021-10-26

·

CVE-2021-31369

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC versions prior to 17.4R3-S5 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 18.3 versions prior to 18.3R3-S5 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 18.4 versions prior to 18.4R3-S9 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.1 versions prior to 19.1R3-S6 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.2 versions prior to 19.2R1-S7 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.2 versions prior to 19.2R3-S3 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.3 versions prior to 19.3R2-S7 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.3 versions prior to 19.3R3-S3 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.4 versions prior to 19.4R3-S5 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.1 versions prior to 20.1R2-S2 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.1 versions prior to 20.1R3-S1 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.2 versions prior to 20.2R3-S2 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.3 versions prior to 20.3R3 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.4 versions prior to 20.4R2-S1 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.4 versions prior to 20.4R3 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 21.1 versions prior to 21.1R1-S1 Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 21.1 versions prior to 21.1R2
Description An Allocation of Resources Without Limits or Throttling issue in Juniper Networks Junos OS allows an unauthenticated network attacker to cause a partial Denial of Service (DoS) with a high rate of specific traffic. If a Class of Service (CoS) rule is attached to the service-set and a high rate of specific traffic is processed by this service-set, for some of the other traffic which has services applied and is being processed by this MS-MPC/MS-MIC drops will be observed. Continued receipt of this high rate of specific traffic will create a sustained Denial of Service (DoS) condition.
Recommendations For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC versions prior to 17.4R3-S5, update to version 17.4R3-S5 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 18.3 versions prior to 18.3R3-S5, update to version 18.3R3-S5 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 18.4 versions prior to 18.4R3-S9, update to version 18.4R3-S9 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.1 versions prior to 19.1R3-S6, update to version 19.1R3-S6 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.2 versions prior to 19.2R1-S7, update to version 19.2R1-S7 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.2 versions prior to 19.2R3-S3, update to version 19.2R3-S3 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.3 versions prior to 19.3R2-S7, update to version 19.3R2-S7 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.3 versions prior to 19.3R3-S3, update to version 19.3R3-S3 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 19.4 versions prior to 19.4R3-S5, update to version 19.4R3-S5 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.1 versions prior to 20.1R2-S2, update to version 20.1R2-S2 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.1 versions prior to 20.1R3-S1, update to version 20.1R3-S1 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.2 versions prior to 20.2R3-S2, update to version 20.2R3-S2 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.3 versions prior to 20.3R3, update to version 20.3R3 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.4 versions prior to 20.4R2-S1, update to version 20.4R2-S1 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 20.4 versions prior to 20.4R3, update to version 20.4R3 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 21.1 versions prior to 21.1R1-S1, update to version 21.1R1-S1 or later. For Juniper Networks Junos OS on MX Series with MS-MPC/MS-MIC 21.1 versions prior to 21.1R2, update to version 21.1R2 or later.

Fix

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

CVE-2021-31369

Affected Products

Junos