CVE-2021-0225 — MEDIUM (5.8)

Vulnerability Description

An Improper Check for Unusual or Exceptional Conditions in Juniper Networks Junos OS Evolved may cause the stateless firewall filter configuration which uses the action 'policer' in certain combinations with other options to not take effect. An administrator can use the following CLI command to see the failures with filter configuration: user@device> show log kfirewall-agent.log | match ERROR Jul 23 14:16:03 ERROR: filter not supported This issue affects Juniper Networks Junos OS Evolved: Versions 19.1R1-EVO and above prior to 20.3R1-S2-EVO, 20.3R2-EVO. This issue does not affect Juniper Networks Junos OS.

CVSS Score

5.8

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Juniper	Junos Os Evolved	19.1

Related Weaknesses (CWE)

CWE-754

References

https://kb.juniper.net/JSA11120Vendor Advisory
https://kb.juniper.net/JSA11120Vendor Advisory

FAQ

What is CVE-2021-0225?

CVE-2021-0225 is a vulnerability with a CVSS score of 5.8 (MEDIUM). An Improper Check for Unusual or Exceptional Conditions in Juniper Networks Junos OS Evolved may cause the stateless firewall filter configuration which uses the action 'policer' in certain combinatio...

How severe is CVE-2021-0225?

CVE-2021-0225 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-0225?

Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos Os Evolved.