CVE-2021-0280

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions prior to 17.4R3-S5 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 18.2R3-S8 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 18.3R3-S5 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 18.4R2-S8 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 19.1R3-S5 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 19.2R3-S2 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 19.3R3-S2 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 19.4R3-S2 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 20.1R3 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 20.2R2-S3, 20.2R3 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 20.3R2 on PTX Series, QFX10K Series Juniper Networks Junos OS versions prior to 20.4R2 on PTX Series, QFX10K Series

Description The issue is related to an Improper Initialization vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on PTX platforms and QFX10K Series with Paradise (PE) chipset-based line cards. This vulnerability may cause BFD sessions to flap when a high rate of specific packets are received, potentially impacting routing protocols and network stability, leading to a Denial of Service (DoS) condition. Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.

Recommendations For Juniper Networks Junos OS versions prior to 17.4R3-S5, update to 17.4R3-S5 or later. For Juniper Networks Junos OS versions prior to 18.2R3-S8, update to 18.2R3-S8 or later. For Juniper Networks Junos OS versions prior to 18.3R3-S5, update to 18.3R3-S5 or later. For Juniper Networks Junos OS versions prior to 18.4R2-S8, update to 18.4R2-S8 or later. For Juniper Networks Junos OS versions prior to 19.1R3-S5, update to 19.1R3-S5 or later. For Juniper Networks Junos OS versions prior to 19.2R3-S2, update to 19.2R3-S2 or later. For Juniper Networks Junos OS versions prior to 19.3R3-S2, update to 19.3R3-S2 or later. For Juniper Networks Junos OS versions prior to 19.4R3-S2, update to 19.4R3-S2 or later. For Juniper Networks Junos OS versions prior to 20.1R3, update to 20.1R3 or later. For Juniper Networks Junos OS versions prior to 20.2R2-S3, 20.2R3, update to 20.2R2-S3, 20.2R3 or later. For Juniper Networks Junos OS versions prior to 20.3R2, update to 20.3R2 or later. For Juniper Networks Junos OS versions prior to 20.4R2, update to 20.4R2 or later.