CVE-2019-0033
SRX Series: A remote attacker may cause a high CPU Denial of Service to the device when proxy ARP is configured.
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A firewall bypass vulnerability in the proxy ARP service of Juniper Networks Junos OS allows an attacker to cause a high CPU condition leading to a Denial of Service (DoS). This issue affects only IPv4. Affected releases are Juniper Networks Junos OS: 12.1X46 versions above and including 12.1X46-D25 prior to 12.1X46-D71, 12.1X46-D73 on SRX Series; 12.3X48 versions prior to 12.3X48-D50 on SRX Series; 15.1X49 versions prior to 15.1X49-D75 on SRX Series.
Una vulnerabilidad de omisión del firewall en el servicio ARP proxy del Juniper Networks Junos OS permite a un atacante provocar una condición de denegación de servicio (DoS), debido a un alto uso de la CPU . Este problema afecta sólo a IPv4. Las versiones afectadas son el Juniper Networks Junos OS: Versiones 12.1X46 anteriores e incluyendo 12.1X46-D25, anteriores a 12.1X46-D71, 12.1X46-D73 en la serie SRX; versiones 12.3X48 anteriores a 12.3X48-D50 en la serie SRX y versiones 15.1X49 anteriores a 15.1X49-D75 en la serie SRX.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2018-10-11 CVE Reserved
- 2019-04-10 CVE Published
- 2023-03-07 EPSS Updated
- 2024-09-17 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-400: Uncontrolled Resource Consumption
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/107882 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://kb.juniper.net/JSA10922 | 2019-04-12 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx100 Search vendor "Juniper" for product "Srx100" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx110 Search vendor "Juniper" for product "Srx110" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx1400 Search vendor "Juniper" for product "Srx1400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx210 Search vendor "Juniper" for product "Srx210" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx220 Search vendor "Juniper" for product "Srx220" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx240 Search vendor "Juniper" for product "Srx240" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx3400 Search vendor "Juniper" for product "Srx3400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx3600 Search vendor "Juniper" for product "Srx3600" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5400 Search vendor "Juniper" for product "Srx5400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx550 Search vendor "Juniper" for product "Srx550" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5600 Search vendor "Juniper" for product "Srx5600" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5800 Search vendor "Juniper" for product "Srx5800" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46 <= 12.1x46-d10 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46 <= 12.1x46-d10" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx650 Search vendor "Juniper" for product "Srx650" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx100 Search vendor "Juniper" for product "Srx100" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx110 Search vendor "Juniper" for product "Srx110" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx1400 Search vendor "Juniper" for product "Srx1400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx210 Search vendor "Juniper" for product "Srx210" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx220 Search vendor "Juniper" for product "Srx220" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx240 Search vendor "Juniper" for product "Srx240" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx3400 Search vendor "Juniper" for product "Srx3400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx3600 Search vendor "Juniper" for product "Srx3600" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5400 Search vendor "Juniper" for product "Srx5400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx550 Search vendor "Juniper" for product "Srx550" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5600 Search vendor "Juniper" for product "Srx5600" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5800 Search vendor "Juniper" for product "Srx5800" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.1x46-d25 < 12.1x46-d71 Search vendor "Juniper" for product "Junos" and version " >= 12.1x46-d25 < 12.1x46-d71" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx650 Search vendor "Juniper" for product "Srx650" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx100 Search vendor "Juniper" for product "Srx100" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx110 Search vendor "Juniper" for product "Srx110" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx1400 Search vendor "Juniper" for product "Srx1400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx210 Search vendor "Juniper" for product "Srx210" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx220 Search vendor "Juniper" for product "Srx220" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx240 Search vendor "Juniper" for product "Srx240" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx3400 Search vendor "Juniper" for product "Srx3400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx3600 Search vendor "Juniper" for product "Srx3600" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5400 Search vendor "Juniper" for product "Srx5400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx550 Search vendor "Juniper" for product "Srx550" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5600 Search vendor "Juniper" for product "Srx5600" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5800 Search vendor "Juniper" for product "Srx5800" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 12.3x48 < 12.3x48-d50 Search vendor "Juniper" for product "Junos" and version " >= 12.3x48 < 12.3x48-d50" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx650 Search vendor "Juniper" for product "Srx650" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx100 Search vendor "Juniper" for product "Srx100" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx110 Search vendor "Juniper" for product "Srx110" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx1400 Search vendor "Juniper" for product "Srx1400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx210 Search vendor "Juniper" for product "Srx210" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx220 Search vendor "Juniper" for product "Srx220" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx240 Search vendor "Juniper" for product "Srx240" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx3400 Search vendor "Juniper" for product "Srx3400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx3600 Search vendor "Juniper" for product "Srx3600" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5400 Search vendor "Juniper" for product "Srx5400" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx550 Search vendor "Juniper" for product "Srx550" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5600 Search vendor "Juniper" for product "Srx5600" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx5800 Search vendor "Juniper" for product "Srx5800" | - | - |
Safe
|
| Juniper Search vendor "Juniper" | Junos Search vendor "Juniper" for product "Junos" | >= 15.1x49 < 15.1x49-d75 Search vendor "Juniper" for product "Junos" and version " >= 15.1x49 < 15.1x49-d75" | - |
Affected
| in | Juniper Search vendor "Juniper" | Srx650 Search vendor "Juniper" for product "Srx650" | - | - |
Safe
|