CVE-2020-1681
Junos OS Evolved: Receipt of a specifically malformed NDP packet could lead to Denial of Service
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Receipt of a specifically malformed NDP packet sent from the local area network (LAN) to a device running Juniper Networks Junos OS Evolved can cause the ndp process to crash, resulting in a Denial of Service (DoS). The process automatically restarts without intervention, but a continuous receipt of the malformed NDP packets could leaded to an extended Denial of Service condition. During this time, IPv6 neighbor learning will be affected. The issue occurs when parsing the incoming malformed NDP packet. Rather than simply discarding the packet, the process asserts, performing a controlled exit and restart, thereby avoiding any chance of an unhandled exception. Exploitation of this vulnerability is limited to a temporary denial of service, and cannot be leveraged to cause additional impact on the system. This issue is limited to the processing of IPv6 NDP packets. IPv4 packet processing cannot trigger, and is unaffected by this vulnerability. This issue affects all Juniper Networks Junos OS Evolved versions prior to 20.1R2-EVO. Junos OS is unaffected by this vulnerability.
La recepción de un paquete NDP específicamente malformado enviado desde la red de área local (LAN) hacia un dispositivo que ejecuta Juniper Networks Junos OS Evolved puede hacer que el proceso ndp se bloquee, lo que resultará en una Denegación de Servicio (DoS). El proceso se reinicia automáticamente sin intervención, pero una recepción continua de los paquetes NDP malformados podría conllevar a una condición de Denegación de Servicio extendida. Durante este tiempo, el aprendizaje vecino de IPv6 será afectado. El problema se produce cuando se analiza el paquete NDP entrante malformado. En lugar de simplemente descartar el paquete, el proceso afirma, realizando una salida y reinicio controlados, evitando así cualquier posibilidad de una excepción no controlada. La explotación de esta vulnerabilidad está limita a una denegación temporal de servicio y no se puede explotar para causar un impacto adicional en el sistema. Este problema se limita al procesamiento de paquetes IPv6 NDP. El procesamiento de paquetes IPv4 no se puede activar y no está afectado por esta vulnerabilidad. Este problema afecta a todas las versiones de Junos OS Evolved de Juniper Networks anteriores a 20.1R2-EVO. Junos OS no está afectado por esta vulnerabilidad
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-11-04 CVE Reserved
- 2020-10-16 CVE Published
- 2023-07-02 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-617: Reachable Assertion
- CWE-755: Improper Handling of Exceptional Conditions
CAPEC
References (1)
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Juniper Search vendor "Juniper" | Junos Os Evolved Search vendor "Juniper" for product "Junos Os Evolved" | 19.2 Search vendor "Juniper" for product "Junos Os Evolved" and version "19.2" | r1 |
Affected
| ||||||
| Juniper Search vendor "Juniper" | Junos Os Evolved Search vendor "Juniper" for product "Junos Os Evolved" | 19.2 Search vendor "Juniper" for product "Junos Os Evolved" and version "19.2" | r2 |
Affected
| ||||||
| Juniper Search vendor "Juniper" | Junos Os Evolved Search vendor "Juniper" for product "Junos Os Evolved" | 19.3 Search vendor "Juniper" for product "Junos Os Evolved" and version "19.3" | r2 |
Affected
| ||||||
| Juniper Search vendor "Juniper" | Junos Os Evolved Search vendor "Juniper" for product "Junos Os Evolved" | 19.4 Search vendor "Juniper" for product "Junos Os Evolved" and version "19.4" | r1 |
Affected
| ||||||
| Juniper Search vendor "Juniper" | Junos Os Evolved Search vendor "Juniper" for product "Junos Os Evolved" | 19.4 Search vendor "Juniper" for product "Junos Os Evolved" and version "19.4" | r2 |
Affected
| ||||||
| Juniper Search vendor "Juniper" | Junos Os Evolved Search vendor "Juniper" for product "Junos Os Evolved" | 19.4 Search vendor "Juniper" for product "Junos Os Evolved" and version "19.4" | r2-s1 |
Affected
| ||||||
| Juniper Search vendor "Juniper" | Junos Os Evolved Search vendor "Juniper" for product "Junos Os Evolved" | 20.1 Search vendor "Juniper" for product "Junos Os Evolved" and version "20.1" | r1 |
Affected
| ||||||