CVE-2018-0005 - Vulnerability Details

Vendors	Products
Juniper	Ex2200 Ex2200-c Ex2300 Ex2300-c Ex3300 Ex3400 Ex4200 Ex4300 Ex4550 Ex4600 Ex9200 Ex Rps Junos Qfx10002 Qfx10008 Qfx10016 Qfx5100 Qfx5110 Qfx5200

Link	Providers
http://www.securitytracker.com/id/1040182
https://kb.juniper.net/JSA10833

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "Junos OS", "vendor": "Juniper Networks", "versions": [{"lessThan": "14.1X53-D40", "status": "affected", "version": "14.1X53", "versionType": "custom"}, {"lessThan": "15.1X53-D55", "status": "affected", "version": "15.1X53", "versionType": "custom"}, {"lessThan": "15.1R7", "status": "affected", "version": "15.1", "versionType": "custom"}]}], "datePublic": "2018-01-10T00:00:00", "descriptions": [{"lang": "en", "value": "QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7."}], "exploits": [{"lang": "en", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "metrics": [{"cvssV3_0": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.0"}}], "problemTypes": [{"descriptions": [{"description": "QFX and EX Series switches may forward traffic instead of dropping traffic which can lead to denials of services or other unintended conditions.", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-01-14T10:57:01", "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "shortName": "juniper"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://kb.juniper.net/JSA10833"}, {"name": "1040182", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1040182"}], "solutions": [{"lang": "en", "value": "The following software releases have been updated to resolve this specific issue: 14.1X53-D40, 15.1X53-D55, 15.1X53-D60, 16.1R1, and all subsequent releases."}], "source": {"advisory": "JSA10833", "defect": ["1105372"], "discovery": "INTERNAL"}, "title": "Security Bulletin: Junos OS: MAC move limit configured to drop traffic may forward traffic.", "workarounds": [{"lang": "en", "value": "To decrease the risk of seeing the issue, increase the MAC move limit rate on the device, or to work around the issue until a fix can be taken, remove the MAC move limit from the devices running configuration.  These actions may introduce other possible unintended consequences to customer environments and should be evaluated carefully on a case-by-case basis and are not complete mitigations."}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "sirt@juniper.net", "DATE_PUBLIC": "2018-01-10T17:00:00.000Z", "ID": "CVE-2018-0005", "STATE": "PUBLIC", "TITLE": "Security Bulletin: Junos OS: MAC move limit configured to drop traffic may forward traffic."}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Junos OS", "version": {"version_data": [{"affected": "<", "version_affected": "<", "version_name": "14.1X53", "version_value": "14.1X53-D40"}, {"affected": "<", "version_affected": "<", "version_name": "15.1X53", "version_value": "15.1X53-D55"}, {"affected": "<", "version_affected": "<", "version_name": "15.1", "version_value": "15.1R7"}]}}]}, "vendor_name": "Juniper Networks"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7."}]}, "exploit": [{"lang": "en", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.0"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "QFX and EX Series switches may forward traffic instead of dropping traffic which can lead to denials of services or other unintended conditions."}]}]}, "references": {"reference_data": [{"name": "https://kb.juniper.net/JSA10833", "refsource": "CONFIRM", "url": "https://kb.juniper.net/JSA10833"}, {"name": "1040182", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1040182"}]}, "solution": [{"lang": "en", "value": "The following software releases have been updated to resolve this specific issue: 14.1X53-D40, 15.1X53-D55, 15.1X53-D60, 16.1R1, and all subsequent releases."}], "source": {"advisory": "JSA10833", "defect": ["1105372"], "discovery": "INTERNAL"}, "work_around": [{"lang": "en", "value": "To decrease the risk of seeing the issue, increase the MAC move limit rate on the device, or to work around the issue until a fix can be taken, remove the MAC move limit from the devices running configuration.  These actions may introduce other possible unintended consequences to customer environments and should be evaluated carefully on a case-by-case basis and are not complete mitigations."}]}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T03:14:16.097Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://kb.juniper.net/JSA10833"}, {"name": "1040182", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1040182"}]}]}, "cveMetadata": {"assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "assignerShortName": "juniper", "cveId": "CVE-2018-0005", "datePublished": "2018-01-10T22:00:00Z", "dateReserved": "2017-11-16T00:00:00", "dateUpdated": "2024-09-17T01:51:13.097Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : Junos OS (string)

vendor : Juniper Networks (string)

versions : [ »

0 : { »

lessThan : 14.1X53-D40 (string)

status : affected (string)

version : 14.1X53 (string)

versionType : custom (string)

}

1 : { »

lessThan : 15.1X53-D55 (string)

status : affected (string)

version : 15.1X53 (string)

versionType : custom (string)

}

2 : { »

lessThan : 15.1R7 (string)

status : affected (string)

version : 15.1 (string)

versionType : custom (string)

}

]

}

]

datePublic : 2018-01-10T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7. (string)

}

]

exploits : [ »

0 : { »

lang : en (string)

value : Juniper SIRT is not aware of any malicious exploitation of this vulnerability. (string)

}

]

metrics : [ »

0 : { »

cvssV3_0 : { »

attackComplexity : LOW (string)

attackVector : ADJACENT_NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.4 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : CHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H (string)

version : 3.0 (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : QFX and EX Series switches may forward traffic instead of dropping traffic which can lead to denials of services or other unintended conditions. (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2018-01-14T10:57:01 (string)

orgId : 8cbe9d5a-a066-4c94-8978-4b15efeae968 (string)

shortName : juniper (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : https://kb.juniper.net/JSA10833 (string)

}

1 : { »

name : 1040182 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1040182 (string)

}

]

solutions : [ »

0 : { »

lang : en (string)

value : The following software releases have been updated to resolve this specific issue: 14.1X53-D40, 15.1X53-D55, 15.1X53-D60, 16.1R1, and all subsequent releases. (string)

}

]

source : { »

advisory : JSA10833 (string)

defect : [ »

0 : 1105372 (string)

]

discovery : INTERNAL (string)

}

title : Security Bulletin: Junos OS: MAC move limit configured to drop traffic may forward traffic. (string)

workarounds : [ »

0 : { »

lang : en (string)

value : To decrease the risk of seeing the issue, increase the MAC move limit rate on the device, or to work around the issue until a fix can be taken, remove the MAC move limit from the devices running configuration. These actions may introduce other possible unintended consequences to customer environments and should be evaluated carefully on a case-by-case basis and are not complete mitigations. (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : sirt@juniper.net (string)

DATE_PUBLIC : 2018-01-10T17:00:00.000Z (string)

ID : CVE-2018-0005 (string)

STATE : PUBLIC (string)

TITLE : Security Bulletin: Junos OS: MAC move limit configured to drop traffic may forward traffic. (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : Junos OS (string)

version : { »

version_data : [ »

0 : { »

affected : < (string)

version_affected : < (string)

version_name : 14.1X53 (string)

version_value : 14.1X53-D40 (string)

}

1 : { »

affected : < (string)

version_affected : < (string)

version_name : 15.1X53 (string)

version_value : 15.1X53-D55 (string)

}

2 : { »

affected : < (string)

version_affected : < (string)

version_name : 15.1 (string)

version_value : 15.1R7 (string)

}

]

}

]

}

vendor_name : Juniper Networks (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7. (string)

}

]

}

exploit : [ »

0 : { »

lang : en (string)

value : Juniper SIRT is not aware of any malicious exploitation of this vulnerability. (string)

}

]

impact : { »

cvss : { »

attackComplexity : LOW (string)

attackVector : ADJACENT_NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.4 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : CHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H (string)

version : 3.0 (string)

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : QFX and EX Series switches may forward traffic instead of dropping traffic which can lead to denials of services or other unintended conditions. (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://kb.juniper.net/JSA10833 (string)

refsource : CONFIRM (string)

url : https://kb.juniper.net/JSA10833 (string)

}

1 : { »

name : 1040182 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1040182 (string)

}

]

}

solution : [ »

0 : { »

lang : en (string)

value : The following software releases have been updated to resolve this specific issue: 14.1X53-D40, 15.1X53-D55, 15.1X53-D60, 16.1R1, and all subsequent releases. (string)

}

]

source : { »

advisory : JSA10833 (string)

defect : [ »

0 : 1105372 (string)

]

discovery : INTERNAL (string)

}

work_around : [ »

0 : { »

lang : en (string)

value : To decrease the risk of seeing the issue, increase the MAC move limit rate on the device, or to work around the issue until a fix can be taken, remove the MAC move limit from the devices running configuration. These actions may introduce other possible unintended consequences to customer environments and should be evaluated carefully on a case-by-case basis and are not complete mitigations. (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-05T03:14:16.097Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : https://kb.juniper.net/JSA10833 (string)

}

1 : { »

name : 1040182 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1040182 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8cbe9d5a-a066-4c94-8978-4b15efeae968 (string)

assignerShortName : juniper (string)

cveId : CVE-2018-0005 (string)

datePublished : 2018-01-10T22:00:00Z (string)

dateReserved : 2017-11-16T00:00:00 (string)

dateUpdated : 2024-09-17T01:51:13.097Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:14.1x53:*:*:*:*:*:*:*", "matchCriteriaId": "9C7FCCC1-B151-465A-8327-26DB5DC074F0", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d10:*:*:*:*:*:*", "matchCriteriaId": "09771B8F-8B2A-4E8B-B4D3-80677697FCF3", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d15:*:*:*:*:*:*", "matchCriteriaId": "55E2F909-E1CC-45AA-ABA9-58178B751808", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d16:*:*:*:*:*:*", "matchCriteriaId": "E1AA12C5-4520-4F79-80BE-66112F7AFC2A", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d25:*:*:*:*:*:*", "matchCriteriaId": "807C8110-5CC2-45F0-B094-BBF9C0B63BDD", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d26:*:*:*:*:*:*", "matchCriteriaId": "547E5737-D385-49B9-A69F-A3B185A34116", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d27:*:*:*:*:*:*", "matchCriteriaId": "2ED257ED-A56B-48A6-8568-65F36FFFC753", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d30:*:*:*:*:*:*", "matchCriteriaId": "74500FC7-EE82-4AA8-9A5F-15DE4835E337", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:14.1x53:d35:*:*:*:*:*:*", "matchCriteriaId": "AAE14AE1-6756-4831-A8D5-A6D07DB24AF2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:juniper:ex_rps:-:*:*:*:*:*:*:*", "matchCriteriaId": "42877394-A0A1-4136-A1D3-D287BFCC85E5", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:*", "matchCriteriaId": "AE3D4F71-8476-4F0D-A976-A308D6483D6D", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:*", "matchCriteriaId": "F7BD5636-93D5-4C06-964F-00055DF6B2B8", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:*", "matchCriteriaId": "3B3302CB-457F-4BD2-B80B-F70FB4C4542E", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:*", "matchCriteriaId": "979C3597-C53B-4F4B-9EA7-126DA036C86D", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:*", "matchCriteriaId": "FC326549-217D-4194-8310-AB398D6FF3F0", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:*", "matchCriteriaId": "47DAF5E7-E610-4D74-8573-41C16D642837", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:*", "matchCriteriaId": "53269C69-3D1E-4F05-8EF6-81743D7A699E", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:*", "matchCriteriaId": "E594D6DC-87F6-40D2-8268-ED6021462168", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:*", "matchCriteriaId": "D7E98077-92AF-4E3E-96F0-2E6F9D6343D9", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:*", "matchCriteriaId": "D1BB20B5-EA30-4E8E-9055-2E629648436A", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:*", "matchCriteriaId": "D08A8D94-134A-41E7-8396-70D8B0735E9C", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:*", "matchCriteriaId": "F1401145-D8EC-4DB9-9CDE-9DE6C0D000C5", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:*", "matchCriteriaId": "1453E42A-77B3-4922-8EC3-1A5668C39550", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:*", "matchCriteriaId": "26408465-BD6A-4416-B98E-691A5F651080", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:*", "matchCriteriaId": "E974B4BC-64C5-4BB6-AF31-D46AF3763416", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:*", "matchCriteriaId": "79A8847B-4F98-4949-8639-5CD2B411D10F", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:*", "matchCriteriaId": "EDC5478F-A047-4F6D-BB11-0077A74C0174", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:15.1:r1:*:*:*:*:*:*", "matchCriteriaId": "D0D3EA8F-4D30-4383-AF2F-0FB6D822D0F3", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r2:*:*:*:*:*:*", "matchCriteriaId": "0E6CD065-EC06-4846-BD2A-D3CA7866070F", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r3:*:*:*:*:*:*", "matchCriteriaId": "C7620D01-1A6B-490F-857E-0D803E0AEE56", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r4:*:*:*:*:*:*", "matchCriteriaId": "4A1545CE-279F-4EE2-8913-8F3B2FAFE7F6", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r5:*:*:*:*:*:*", "matchCriteriaId": "08FC0245-A4FF-42C0-A236-8569301E351A", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1:r6:*:*:*:*:*:*", "matchCriteriaId": "120EA9E3-788B-4CFD-A74F-17111FFD0131", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:juniper:ex_rps:-:*:*:*:*:*:*:*", "matchCriteriaId": "42877394-A0A1-4136-A1D3-D287BFCC85E5", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:*", "matchCriteriaId": "AE3D4F71-8476-4F0D-A976-A308D6483D6D", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:*", "matchCriteriaId": "F7BD5636-93D5-4C06-964F-00055DF6B2B8", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:*", "matchCriteriaId": "3B3302CB-457F-4BD2-B80B-F70FB4C4542E", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:*", "matchCriteriaId": "979C3597-C53B-4F4B-9EA7-126DA036C86D", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:*", "matchCriteriaId": "FC326549-217D-4194-8310-AB398D6FF3F0", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:*", "matchCriteriaId": "47DAF5E7-E610-4D74-8573-41C16D642837", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:*", "matchCriteriaId": "53269C69-3D1E-4F05-8EF6-81743D7A699E", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:*", "matchCriteriaId": "E594D6DC-87F6-40D2-8268-ED6021462168", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:*", "matchCriteriaId": "D7E98077-92AF-4E3E-96F0-2E6F9D6343D9", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:*", "matchCriteriaId": "D1BB20B5-EA30-4E8E-9055-2E629648436A", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:*", "matchCriteriaId": "D08A8D94-134A-41E7-8396-70D8B0735E9C", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:*", "matchCriteriaId": "F1401145-D8EC-4DB9-9CDE-9DE6C0D000C5", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:*", "matchCriteriaId": "1453E42A-77B3-4922-8EC3-1A5668C39550", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:*", "matchCriteriaId": "26408465-BD6A-4416-B98E-691A5F651080", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:*", "matchCriteriaId": "E974B4BC-64C5-4BB6-AF31-D46AF3763416", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:*", "matchCriteriaId": "79A8847B-4F98-4949-8639-5CD2B411D10F", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:*", "matchCriteriaId": "EDC5478F-A047-4F6D-BB11-0077A74C0174", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:*", "matchCriteriaId": "1E3B807C-196D-42B8-9042-7582A1366772", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*", "matchCriteriaId": "83FEEE8F-9279-46F2-BAF9-A60537020C61", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*", "matchCriteriaId": "1F294E43-73FA-4EF3-90F2-EE29C56D6573", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:*", "matchCriteriaId": "EDDE1048-BFEA-4A3E-8270-27C538A68837", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:*", "matchCriteriaId": "CC517CD0-FF35-498F-AD33-683B43CA3829", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d34:*:*:*:*:*:*", "matchCriteriaId": "53F7E1C5-BFA9-426C-9F95-3EA5DB458C7E", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:*", "matchCriteriaId": "D58997E6-96B4-4930-A29D-B49D06DFA9D5", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d51:*:*:*:*:*:*", "matchCriteriaId": "AFB887FD-D3FB-439F-9A89-CC367A74DB00", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d52:*:*:*:*:*:*", "matchCriteriaId": "BDA46912-D173-49C5-A0A1-64BD0889D3A0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:juniper:ex_rps:-:*:*:*:*:*:*:*", "matchCriteriaId": "42877394-A0A1-4136-A1D3-D287BFCC85E5", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:*", "matchCriteriaId": "AE3D4F71-8476-4F0D-A976-A308D6483D6D", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:*", "matchCriteriaId": "F7BD5636-93D5-4C06-964F-00055DF6B2B8", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:*", "matchCriteriaId": "3B3302CB-457F-4BD2-B80B-F70FB4C4542E", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:*", "matchCriteriaId": "979C3597-C53B-4F4B-9EA7-126DA036C86D", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:*", "matchCriteriaId": "FC326549-217D-4194-8310-AB398D6FF3F0", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:*", "matchCriteriaId": "47DAF5E7-E610-4D74-8573-41C16D642837", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:*", "matchCriteriaId": "53269C69-3D1E-4F05-8EF6-81743D7A699E", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:*", "matchCriteriaId": "E594D6DC-87F6-40D2-8268-ED6021462168", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:*", "matchCriteriaId": "D7E98077-92AF-4E3E-96F0-2E6F9D6343D9", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:*", "matchCriteriaId": "D1BB20B5-EA30-4E8E-9055-2E629648436A", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:*", "matchCriteriaId": "D08A8D94-134A-41E7-8396-70D8B0735E9C", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:*", "matchCriteriaId": "F1401145-D8EC-4DB9-9CDE-9DE6C0D000C5", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:*", "matchCriteriaId": "1453E42A-77B3-4922-8EC3-1A5668C39550", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:*", "matchCriteriaId": "26408465-BD6A-4416-B98E-691A5F651080", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:*", "matchCriteriaId": "E974B4BC-64C5-4BB6-AF31-D46AF3763416", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:*", "matchCriteriaId": "79A8847B-4F98-4949-8639-5CD2B411D10F", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:*", "matchCriteriaId": "EDC5478F-A047-4F6D-BB11-0077A74C0174", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7."}, {"lang": "es", "value": "Los switches de las series QFX y EX configurados para volcar el tr\u00e1fico cuando se excede el l\u00edmite de movimiento de MAC redireccionan tr\u00e1fico en vez de volcarlo. Esto puede provocar denegaciones de servicio (DoS) u otras condiciones no esperadas. Las distribuciones afectadas son Juniper Networks Junos OS: 14.1X53 anteriores a 14.1X53-D40; 15.1X53 anteriores a 15.1X53-D55 y 15.1 anteriores a 15.1R7."}], "id": "CVE-2018-0005", "lastModified": "2024-11-21T03:37:20.383", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 6.5, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 4.0, "source": "sirt@juniper.net", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-01-10T22:29:01.103", "references": [{"source": "sirt@juniper.net", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1040182"}, {"source": "sirt@juniper.net", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://kb.juniper.net/JSA10833"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1040182"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Mitigation", "Vendor Advisory"], "url": "https://kb.juniper.net/JSA10833"}], "sourceIdentifier": "sirt@juniper.net", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-754"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:juniper:junos:14.1x53:*:*:*:*:*:*:* (string)

matchCriteriaId : 9C7FCCC1-B151-465A-8327-26DB5DC074F0 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:juniper:junos:14.1x53:d10:*:*:*:*:*:* (string)

matchCriteriaId : 09771B8F-8B2A-4E8B-B4D3-80677697FCF3 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:juniper:junos:14.1x53:d15:*:*:*:*:*:* (string)

matchCriteriaId : 55E2F909-E1CC-45AA-ABA9-58178B751808 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:juniper:junos:14.1x53:d16:*:*:*:*:*:* (string)

matchCriteriaId : E1AA12C5-4520-4F79-80BE-66112F7AFC2A (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:juniper:junos:14.1x53:d25:*:*:*:*:*:* (string)

matchCriteriaId : 807C8110-5CC2-45F0-B094-BBF9C0B63BDD (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:juniper:junos:14.1x53:d26:*:*:*:*:*:* (string)

matchCriteriaId : 547E5737-D385-49B9-A69F-A3B185A34116 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:juniper:junos:14.1x53:d27:*:*:*:*:*:* (string)

matchCriteriaId : 2ED257ED-A56B-48A6-8568-65F36FFFC753 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:juniper:junos:14.1x53:d30:*:*:*:*:*:* (string)

matchCriteriaId : 74500FC7-EE82-4AA8-9A5F-15DE4835E337 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:juniper:junos:14.1x53:d35:*:*:*:*:*:* (string)

matchCriteriaId : AAE14AE1-6756-4831-A8D5-A6D07DB24AF2 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:juniper:ex_rps:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 42877394-A0A1-4136-A1D3-D287BFCC85E5 (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : AE3D4F71-8476-4F0D-A976-A308D6483D6D (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F7BD5636-93D5-4C06-964F-00055DF6B2B8 (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3B3302CB-457F-4BD2-B80B-F70FB4C4542E (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 979C3597-C53B-4F4B-9EA7-126DA036C86D (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:* (string)

matchCriteriaId : FC326549-217D-4194-8310-AB398D6FF3F0 (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 47DAF5E7-E610-4D74-8573-41C16D642837 (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 53269C69-3D1E-4F05-8EF6-81743D7A699E (string)

vulnerable : false (boolean)

}

8 : { »

criteria : cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E594D6DC-87F6-40D2-8268-ED6021462168 (string)

vulnerable : false (boolean)

}

9 : { »

criteria : cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D7E98077-92AF-4E3E-96F0-2E6F9D6343D9 (string)

vulnerable : false (boolean)

}

10 : { »

criteria : cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D1BB20B5-EA30-4E8E-9055-2E629648436A (string)

vulnerable : false (boolean)

}

11 : { »

criteria : cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D08A8D94-134A-41E7-8396-70D8B0735E9C (string)

vulnerable : false (boolean)

}

12 : { »

criteria : cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F1401145-D8EC-4DB9-9CDE-9DE6C0D000C5 (string)

vulnerable : false (boolean)

}

13 : { »

criteria : cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 1453E42A-77B3-4922-8EC3-1A5668C39550 (string)

vulnerable : false (boolean)

}

14 : { »

criteria : cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 26408465-BD6A-4416-B98E-691A5F651080 (string)

vulnerable : false (boolean)

}

15 : { »

criteria : cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E974B4BC-64C5-4BB6-AF31-D46AF3763416 (string)

vulnerable : false (boolean)

}

16 : { »

criteria : cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 79A8847B-4F98-4949-8639-5CD2B411D10F (string)

vulnerable : false (boolean)

}

17 : { »

criteria : cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : EDC5478F-A047-4F6D-BB11-0077A74C0174 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:juniper:junos:15.1:r1:*:*:*:*:*:* (string)

matchCriteriaId : D0D3EA8F-4D30-4383-AF2F-0FB6D822D0F3 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:juniper:junos:15.1:r2:*:*:*:*:*:* (string)

matchCriteriaId : 0E6CD065-EC06-4846-BD2A-D3CA7866070F (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:juniper:junos:15.1:r3:*:*:*:*:*:* (string)

matchCriteriaId : C7620D01-1A6B-490F-857E-0D803E0AEE56 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:juniper:junos:15.1:r4:*:*:*:*:*:* (string)

matchCriteriaId : 4A1545CE-279F-4EE2-8913-8F3B2FAFE7F6 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:juniper:junos:15.1:r5:*:*:*:*:*:* (string)

matchCriteriaId : 08FC0245-A4FF-42C0-A236-8569301E351A (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:juniper:junos:15.1:r6:*:*:*:*:*:* (string)

matchCriteriaId : 120EA9E3-788B-4CFD-A74F-17111FFD0131 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:juniper:ex_rps:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 42877394-A0A1-4136-A1D3-D287BFCC85E5 (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : AE3D4F71-8476-4F0D-A976-A308D6483D6D (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F7BD5636-93D5-4C06-964F-00055DF6B2B8 (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3B3302CB-457F-4BD2-B80B-F70FB4C4542E (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 979C3597-C53B-4F4B-9EA7-126DA036C86D (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:* (string)

matchCriteriaId : FC326549-217D-4194-8310-AB398D6FF3F0 (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 47DAF5E7-E610-4D74-8573-41C16D642837 (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 53269C69-3D1E-4F05-8EF6-81743D7A699E (string)

vulnerable : false (boolean)

}

8 : { »

criteria : cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E594D6DC-87F6-40D2-8268-ED6021462168 (string)

vulnerable : false (boolean)

}

9 : { »

criteria : cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D7E98077-92AF-4E3E-96F0-2E6F9D6343D9 (string)

vulnerable : false (boolean)

}

10 : { »

criteria : cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D1BB20B5-EA30-4E8E-9055-2E629648436A (string)

vulnerable : false (boolean)

}

11 : { »

criteria : cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D08A8D94-134A-41E7-8396-70D8B0735E9C (string)

vulnerable : false (boolean)

}

12 : { »

criteria : cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F1401145-D8EC-4DB9-9CDE-9DE6C0D000C5 (string)

vulnerable : false (boolean)

}

13 : { »

criteria : cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 1453E42A-77B3-4922-8EC3-1A5668C39550 (string)

vulnerable : false (boolean)

}

14 : { »

criteria : cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 26408465-BD6A-4416-B98E-691A5F651080 (string)

vulnerable : false (boolean)

}

15 : { »

criteria : cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E974B4BC-64C5-4BB6-AF31-D46AF3763416 (string)

vulnerable : false (boolean)

}

16 : { »

criteria : cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 79A8847B-4F98-4949-8639-5CD2B411D10F (string)

vulnerable : false (boolean)

}

17 : { »

criteria : cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : EDC5478F-A047-4F6D-BB11-0077A74C0174 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

2 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:* (string)

matchCriteriaId : 1E3B807C-196D-42B8-9042-7582A1366772 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:* (string)

matchCriteriaId : 83FEEE8F-9279-46F2-BAF9-A60537020C61 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:* (string)

matchCriteriaId : 1F294E43-73FA-4EF3-90F2-EE29C56D6573 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:* (string)

matchCriteriaId : EDDE1048-BFEA-4A3E-8270-27C538A68837 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:* (string)

matchCriteriaId : CC517CD0-FF35-498F-AD33-683B43CA3829 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:juniper:junos:15.1x53:d34:*:*:*:*:*:* (string)

matchCriteriaId : 53F7E1C5-BFA9-426C-9F95-3EA5DB458C7E (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:* (string)

matchCriteriaId : D58997E6-96B4-4930-A29D-B49D06DFA9D5 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:juniper:junos:15.1x53:d51:*:*:*:*:*:* (string)

matchCriteriaId : AFB887FD-D3FB-439F-9A89-CC367A74DB00 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:juniper:junos:15.1x53:d52:*:*:*:*:*:* (string)

matchCriteriaId : BDA46912-D173-49C5-A0A1-64BD0889D3A0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:juniper:ex_rps:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 42877394-A0A1-4136-A1D3-D287BFCC85E5 (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:juniper:ex2200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : AE3D4F71-8476-4F0D-A976-A308D6483D6D (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:juniper:ex2200-c:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F7BD5636-93D5-4C06-964F-00055DF6B2B8 (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3B3302CB-457F-4BD2-B80B-F70FB4C4542E (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:juniper:ex2300-c:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 979C3597-C53B-4F4B-9EA7-126DA036C86D (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:juniper:ex3300:-:*:*:*:*:*:*:* (string)

matchCriteriaId : FC326549-217D-4194-8310-AB398D6FF3F0 (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 47DAF5E7-E610-4D74-8573-41C16D642837 (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:juniper:ex4200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 53269C69-3D1E-4F05-8EF6-81743D7A699E (string)

vulnerable : false (boolean)

}

8 : { »

criteria : cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E594D6DC-87F6-40D2-8268-ED6021462168 (string)

vulnerable : false (boolean)

}

9 : { »

criteria : cpe:2.3:h:juniper:ex4550:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D7E98077-92AF-4E3E-96F0-2E6F9D6343D9 (string)

vulnerable : false (boolean)

}

10 : { »

criteria : cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D1BB20B5-EA30-4E8E-9055-2E629648436A (string)

vulnerable : false (boolean)

}

11 : { »

criteria : cpe:2.3:h:juniper:ex9200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D08A8D94-134A-41E7-8396-70D8B0735E9C (string)

vulnerable : false (boolean)

}

12 : { »

criteria : cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F1401145-D8EC-4DB9-9CDE-9DE6C0D000C5 (string)

vulnerable : false (boolean)

}

13 : { »

criteria : cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 1453E42A-77B3-4922-8EC3-1A5668C39550 (string)

vulnerable : false (boolean)

}

14 : { »

criteria : cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 26408465-BD6A-4416-B98E-691A5F651080 (string)

vulnerable : false (boolean)

}

15 : { »

criteria : cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:* (string)

matchCriteriaId : E974B4BC-64C5-4BB6-AF31-D46AF3763416 (string)

vulnerable : false (boolean)

}

16 : { »

criteria : cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 79A8847B-4F98-4949-8639-5CD2B411D10F (string)

vulnerable : false (boolean)

}

17 : { »

criteria : cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:* (string)

matchCriteriaId : EDC5478F-A047-4F6D-BB11-0077A74C0174 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7. (string)

}

1 : { »

lang : es (string)

value : Los switches de las series QFX y EX configurados para volcar el tráfico cuando se excede el límite de movimiento de MAC redireccionan tráfico en vez de volcarlo. Esto puede provocar denegaciones de servicio (DoS) u otras condiciones no esperadas. Las distribuciones afectadas son Juniper Networks Junos OS: 14.1X53 anteriores a 14.1X53-D40; 15.1X53 anteriores a 15.1X53-D55 y 15.1 anteriores a 15.1R7. (string)

}

]

id : CVE-2018-0005 (string)

lastModified : 2024-11-21T03:37:20.383 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : ADJACENT_NETWORK (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 5.8 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:A/AC:L/Au:N/C:P/I:P/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 6.5 (number)

impactScore : 6.4 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV30 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : ADJACENT_NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.4 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : CHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H (string)

version : 3.0 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 4 (number)

source : sirt@juniper.net (string)

type : Secondary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : ADJACENT_NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 8.8 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.0 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 5.9 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2018-01-10T22:29:01.103 (string)

references : [ »

0 : { »

source : sirt@juniper.net (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securitytracker.com/id/1040182 (string)

}

1 : { »

source : sirt@juniper.net (string)

tags : [ »

0 : Mitigation (string)

1 : Vendor Advisory (string)

]

url : https://kb.juniper.net/JSA10833 (string)

}

2 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securitytracker.com/id/1040182 (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Mitigation (string)

1 : Vendor Advisory (string)

]

url : https://kb.juniper.net/JSA10833 (string)

}

]

sourceIdentifier : sirt@juniper.net (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-754 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object