Vulnerability Description
QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos | 14.1x53 |
| Juniper | Ex Rps | - |
| Juniper | Ex2200 | - |
| Juniper | Ex2200-C | - |
| Juniper | Ex2300 | - |
| Juniper | Ex2300-C | - |
| Juniper | Ex3300 | - |
| Juniper | Ex3400 | - |
| Juniper | Ex4200 | - |
| Juniper | Ex4300 | - |
| Juniper | Ex4550 | - |
| Juniper | Ex4600 | - |
| Juniper | Ex9200 | - |
| Juniper | Qfx10002 | - |
| Juniper | Qfx10008 | - |
| Juniper | Qfx10016 | - |
| Juniper | Qfx5100 | - |
| Juniper | Qfx5110 | - |
| Juniper | Qfx5200 | - |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1040182Third Party AdvisoryVDB Entry
- https://kb.juniper.net/JSA10833MitigationVendor Advisory
- http://www.securitytracker.com/id/1040182Third Party AdvisoryVDB Entry
- https://kb.juniper.net/JSA10833MitigationVendor Advisory
FAQ
What is CVE-2018-0005?
CVE-2018-0005 is a vulnerability with a CVSS score of 7.4 (HIGH). QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended con...
How severe is CVE-2018-0005?
CVE-2018-0005 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-0005?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos, Juniper Ex Rps, Juniper Ex2200, Juniper Ex2200-C, Juniper Ex2300.