CVE-2020-1626 — HIGH (7.5) — White Hats Nepal

Vulnerability Description

A vulnerability in Juniper Networks Junos OS Evolved may allow an attacker to cause a Denial of Service (DoS) by sending a high rate of specific packets to the device, resulting in a pfemand process crash. The pfemand process is responsible for packet forwarding on the device. By continuously sending the packet flood, an attacker can repeatedly crash the pfemand process causing a sustained Denial of Service. This issue can only be triggered by traffic sent to the device. Transit traffic does not cause this issue. This issue affects all version of Junos OS Evolved prior to 19.1R1-EVO.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Juniper	Junos Os Evolved	18.3

References

https://kb.juniper.net/JSA11005Vendor Advisory
https://tools.ietf.org/html/rfc6192Third Party Advisory
https://kb.juniper.net/JSA11005Vendor Advisory
https://tools.ietf.org/html/rfc6192Third Party Advisory

FAQ

What is CVE-2020-1626?

CVE-2020-1626 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability in Juniper Networks Junos OS Evolved may allow an attacker to cause a Denial of Service (DoS) by sending a high rate of specific packets to the device, resulting in a pfemand process c...

How severe is CVE-2020-1626?

CVE-2020-1626 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-1626?

Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos Os Evolved.