CVE-2021-0299

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 19.4 prior to 19.4R3 Juniper Networks Junos OS versions 20.1 prior to 20.1R2 Juniper Networks Junos OS versions 20.2 prior to 20.2R1-S1, 20.2R2

Description The issue is related to improper handling of exceptional conditions in Juniper Networks Junos OS, specifically when processing malformed IPv6 packets. This can cause a kernel crash, leading to a device restart and resulting in a Denial of Service (DoS). Continued receipt and processing of such packets can create a sustained DoS condition. The issue only affects systems with IPv6 configured.

Recommendations For Juniper Networks Junos OS version 19.4, update to version 19.4R3 or later. For Juniper Networks Junos OS version 20.1, update to version 20.1R2 or later. For Juniper Networks Junos OS version 20.2, update to version 20.2R1-S1, 20.2R2 or later. As a temporary workaround, consider disabling IPv6 configuration to minimize the risk of exploitation.