CVE-2021-0299

Junos OS: Kernel crash (vmcore) upon receipt of a malformed IPv6 packet

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

An Improper Handling of Exceptional Conditions vulnerability in the processing of a transit or directly received malformed IPv6 packet in Juniper Networks Junos OS results in a kernel crash, causing the device to restart, leading to a Denial of Service (DoS). Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. This issue only affects systems with IPv6 configured. Devices with only IPv4 configured are not vulnerable to this issue. This issue affects Juniper Networks Junos OS: 19.4 versions prior to 19.4R3; 20.1 versions prior to 20.1R2; 20.2 versions prior to 20.2R1-S1, 20.2R2. This issue does not affect Juniper Networks Junos OS versions prior to 19.4R1.

Una vulnerabilidad de Manejo Inapropiado de Condiciones Excepcionales en el procesamiento de un paquete IPv6 malformado recibido en tránsito o directamente en Juniper Networks Junos OS resulta en un bloqueo del kernel, causando el reinicio del dispositivo, conllevando a una Denegación de Servicio (DoS). Si se sigue recibiendo y procesando este paquete, se creará una condición de Denegación de Servicio (DoS) sostenida. Este problema sólo afecta a los sistemas con IPv6 configurado. Los dispositivos con sólo IPv4 configurado no son vulnerables a este problema. Este problema afecta a Juniper Networks Junos OS: versiones 19.4 anteriores a 19.4R3; versiones 20.1 anteriores a 20.1R2; versiones 20.2 anteriores a 20.2R1-S1, 20.2R2. Este problema no afecta a las versiones de Juniper Networks Junos OS anteriores a 19.4R1

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2020-10-27 CVE Reserved
2021-10-19 CVE Published
2024-06-28 EPSS Updated
2024-09-16 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-755: Improper Handling of Exceptional Conditions

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://kb.juniper.net/JSA11213	2021-10-26

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r1		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r1-s1		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r1-s2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r1-s3		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r1-s4		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r2-s1		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r2-s2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r2-s3		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r2-s4		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				19.4 Search vendor "Juniper" for product "Junos" and version "19.4"		r2-s5		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				20.1 Search vendor "Juniper" for product "Junos" and version "20.1"		r1		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				20.1 Search vendor "Juniper" for product "Junos" and version "20.1"		r1-s1		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				20.1 Search vendor "Juniper" for product "Junos" and version "20.1"		r1-s2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				20.1 Search vendor "Juniper" for product "Junos" and version "20.1"		r1-s3		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				20.1 Search vendor "Juniper" for product "Junos" and version "20.1"		r1-s4		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				20.2 Search vendor "Juniper" for product "Junos" and version "20.2"		r1		Affected