CVE-2020-1601

Junos OS: Upon receipt of certain types of malformed PCEP packets the pccd process may crash.

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

< 1%

*EPSS

Affected Versions

403

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Certain types of malformed Path Computation Element Protocol (PCEP) packets when received and processed by a Juniper Networks Junos OS device serving as a Path Computation Client (PCC) in a PCEP environment using Juniper's path computational element protocol daemon (pccd) process allows an attacker to cause the pccd process to crash and generate a core file thereby causing a Denial of Service (DoS). Continued receipt of this family of malformed PCEP packets will cause an extended Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS: 15.1 versions prior to 15.1F6-S13, 15.1R7-S4; 15.1X49 versions prior to 15.1X49-D180 on SRX Series; 15.1X53 versions prior to 15.1X53-D238, 15.1X53-D496, 15.1X53-D592; 16.1 versions prior to 16.1R7-S4; 16.2 versions prior to 16.2R2-S9; 17.1 versions prior to 17.1R2-S11, 17.1R3; 17.2 versions prior to 17.2R1-S9; 17.2 version 17.2R2 and later prior to 17.2R3-S2; 17.3 versions prior to 17.3R3-S3; 17.4 versions prior to 17.4R2-S2, 17.4R3; 18.1 versions prior to 18.1R3-S2; 18.2 versions prior to 18.2R2-S6, 18.2R3; 18.2X75 versions prior to 18.2X75-D40; 18.3 versions prior to 18.3R2; 18.4 versions prior to 18.4R1-S2, 18.4R2. This issue does not affect releases of Junos OS prior to 15.1R1.

Ciertos tipos de paquetes Path Computation Element Protocol (PCEP) malformados cuando son recibidos y procesados por un dispositivo Juniper Networks Junos OS que sirve como un Path Computation Client (PCC) en un entorno PCEP utilizando el proceso path computational element protocol daemon (pccd) de Juniper permite a un atacante causar que el proceso pccd se bloquee y genere un archivo central, causando una Denegación de Servicio (DoS). La recepción continua de esta familia de paquetes PCEP malformados causará una condición extendida de Denegación de Servicio (DoS). Este problema afecta: Juniper Networks Junos OS: versiones 15.1 anteriores a 15.1F6-S13, 15.1R7-S4; versiones 15.1X49 anteriores a 15.1X49-D180 en SRX Series; versiones 15.1X53 anteriores a 15.1X53-D238, 15.1X53-D496, 15.1X53-D592; versiones 16.1 anteriores a 16.1R7-S4; versiones 16.2 anteriores a 16.2R2-S9; versiones 17.1 anteriores a 17.1R2-S11, 17.1R3; versiones 17.2 anteriores a 17.2R1-S9; versión 17.2 hasta 17.2R2 y posterior a 17.2R3-S2; versiones 17.3 anteriores a 17.3R3-S3; versiones 17.4 anteriores a 17.4R2-S2, 17.4R3; versiones 18.1 anteriores a 18.1R3-S2; versiones 18.2 anteriores a 18.2R2-S6,18.2R3; versiones 18.2X75 anteriores a 18.2X75-D40; versiones 18.3 anteriores a 18.3R2; versiones 18.4 anteriores a 18.4R1-S2, 18.4R2. Este problema no afecta a Junos OS versiones anteriores a 15.1R1.

*Credits: N/A

CVSS Scores

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2019-11-04 CVE Reserved
2020-01-15 CVE Published
2024-09-17 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://kb.juniper.net/JSA10980	2021-07-21

1 - 1 of 1

Affected Vendors, Products, and Versions (403)

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx100 Search vendor "Juniper" for product "Srx100"	-	-	Safe
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx110 Search vendor "Juniper" for product "Srx110"	-	-	Safe
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx1400 Search vendor "Juniper" for product "Srx1400"	-	-	Safe
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx1500 Search vendor "Juniper" for product "Srx1500"	-	-	Safe
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx210 Search vendor "Juniper" for product "Srx210"	-	-	Safe
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx220 Search vendor "Juniper" for product "Srx220"	-	-	Safe
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx240 Search vendor "Juniper" for product "Srx240"	-	-	Safe
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx300 Search vendor "Juniper" for product "Srx300"	-	-	Safe
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx320 Search vendor "Juniper" for product "Srx320"	-	-	Safe
Juniper Search vendor "Juniper"	Junos Search vendor "Juniper" for product "Junos"	15.1x49 Search vendor "Juniper" for product "Junos" and version "15.1x49"	d10	Affected	in	Juniper Search vendor "Juniper"	Srx340 Search vendor "Juniper" for product "Srx340"	-	-	Safe

1 - 10 of 403