Vulnerability Description
On Juniper Networks MX series, receipt of a stream of specific Layer 2 frames may cause a memory leak resulting in the packet forwarding engine (PFE) on the line card to crash and restart, causing traffic interruption. By continuously sending this stream of specific layer 2 frame, an attacker connected to the same broadcast domain can repeatedly crash the PFE, causing a prolonged Denial of Service (DoS). This issue affects Juniper Networks Junos OS on MX Series: 17.2 versions prior to 17.2R3-S4; 17.2X75 versions prior to 17.2X75-D105.19; 17.3 versions prior to 17.3R3-S7; 17.4 versions prior to 17.4R1-S3, 17.4R2; 18.1 versions prior to 18.1R2. This issue does not affect Juniper Networks Junos OS releases prior to 17.2R1.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos | 17.2 |
| Juniper | Mx10 | - |
| Juniper | Mx10000 | - |
| Juniper | Mx10003 | - |
| Juniper | Mx104 | - |
| Juniper | Mx150 | - |
| Juniper | Mx2008 | - |
| Juniper | Mx2010 | - |
| Juniper | Mx2020 | - |
| Juniper | Mx204 | - |
| Juniper | Mx240 | - |
| Juniper | Mx40 | - |
| Juniper | Mx480 | - |
| Juniper | Mx5 | - |
| Juniper | Mx80 | - |
| Juniper | Mx960 | - |
Related Weaknesses (CWE)
References
- https://kb.juniper.net/JSA11038Vendor Advisory
- https://kb.juniper.net/JSA11038Vendor Advisory
FAQ
What is CVE-2020-1651?
CVE-2020-1651 is a vulnerability with a CVSS score of 6.5 (MEDIUM). On Juniper Networks MX series, receipt of a stream of specific Layer 2 frames may cause a memory leak resulting in the packet forwarding engine (PFE) on the line card to crash and restart, causing tra...
How severe is CVE-2020-1651?
CVE-2020-1651 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-1651?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos, Juniper Mx10, Juniper Mx10000, Juniper Mx10003, Juniper Mx104.