CVE-2021-0288

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions prior to 17.3R3-S12 Juniper Networks Junos OS versions prior to 17.4R2-S13, 17.4R3-S5 Juniper Networks Junos OS versions prior to 18.1R3-S13 Juniper Networks Junos OS versions prior to 18.2R3-S8 Juniper Networks Junos OS versions prior to 18.3R3-S5 Juniper Networks Junos OS versions prior to 18.4R2-S8, 18.4R3-S8 Juniper Networks Junos OS versions prior to 19.1R3-S5 Juniper Networks Junos OS versions prior to 19.2R3-S2 Juniper Networks Junos OS versions prior to 19.3R2-S6, 19.3R3-S3 Juniper Networks Junos OS versions prior to 19.4R1-S4, 19.4R2-S4, 19.4R3-S2 Juniper Networks Junos OS versions prior to 20.1R3 Juniper Networks Junos OS versions prior to 20.2R2-S2, 20.2R3 Juniper Networks Junos OS versions prior to 20.3R2 Juniper Networks Junos OS versions prior to 20.4R2

Description A vulnerability in the processing of specific MPLS packets in Juniper Networks Junos OS on MX Series and EX9200 Series devices with Trio-based MPCs may cause FPC to crash and lead to a Denial of Service (DoS) condition. Continued receipt of this packet will sustain the Denial of Service (DoS) condition. This issue only affects MX Series and EX9200 Series with Trio-based PFEs.

Recommendations For versions prior to 17.3R3-S12, update to 17.3R3-S12 or later. For versions prior to 17.4R2-S13, 17.4R3-S5, update to 17.4R2-S13, 17.4R3-S5 or later. For versions prior to 18.1R3-S13, update to 18.1R3-S13 or later. For versions prior to 18.2R3-S8, update to 18.2R3-S8 or later. For versions prior to 18.3R3-S5, update to 18.3R3-S5 or later. For versions prior to 18.4R2-S8, 18.4R3-S8, update to 18.4R2-S8, 18.4R3-S8 or later. For versions prior to 19.1R3-S5, update to 19.1R3-S5 or later. For versions prior to 19.2R3-S2, update to 19.2R3-S2 or later. For versions prior to 19.3R2-S6, 19.3R3-S3, update to 19.3R2-S6, 19.3R3-S3 or later. For versions prior to 19.4R1-S4, 19.4R2-S4, 19.4R3-S2, update to 19.4R1-S4, 19.4R2-S4, 19.4R3-S2 or later. For versions prior to 20.1R3, update to 20.1R3 or later. For versions prior to 20.2R2-S2, 20.2R3, update to 20.2R2-S2, 20.2R3 or later. For versions prior to 20.3R2, update to 20.3R2 or later. For versions prior to 20.4R2, update to 20.4R2 or later.