CVE-2020-1650 - Vulnerability Details

Vendors	Products
Juniper	Junos Mx10 Mx10000 Mx10003 Mx104 Mx150 Mx2008 Mx2010 Mx2020 Mx204 Mx240 Mx40 Mx480 Mx5 Mx80 Mx960

Link	Providers
https://kb.juniper.net/JSA11037

Show plain JSON

{"containers": {"cna": {"affected": [{"platforms": ["MX Series"], "product": "Junos OS", "vendor": "Juniper Networks", "versions": [{"status": "affected", "version": "17.2R2-S7"}, {"status": "affected", "version": "17.3R3-S4, 17.3R3-S5"}, {"status": "affected", "version": "17.4R3"}, {"status": "affected", "version": "18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8"}, {"status": "affected", "version": "18.2R3, 18.2R3-S1, 18.2R3-S2"}, {"lessThan": "17.4*", "status": "affected", "version": "17.4R2-S4", "versionType": "custom"}, {"changes": [{"at": "18.3R3", "status": "unaffected"}], "lessThan": "18.3*", "status": "affected", "version": "18.3R2", "versionType": "custom"}, {"changes": [{"at": "18.4R3", "status": "unaffected"}], "lessThan": "18.4*", "status": "affected", "version": "18.4R2", "versionType": "custom"}, {"changes": [{"at": "19.1R3", "status": "unaffected"}], "lessThan": "19.1*", "status": "affected", "version": "19.1R1", "versionType": "custom"}, {"changes": [{"at": "19.2R2", "status": "unaffected"}], "lessThan": "19.2*", "status": "affected", "version": "19.2R1", "versionType": "custom"}, {"changes": [{"at": "19.3R3", "status": "unaffected"}], "lessThan": "19.3*", "status": "affected", "version": "19.3R1", "versionType": "custom"}]}], "datePublic": "2020-07-08T00:00:00", "descriptions": [{"lang": "en", "value": "On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending these specific packets, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a prolonged Denial of Service. This issue affects MX Series devices using MS-PIC, MS-MIC or MS-MPC service cards with any service configured. This issue affects Juniper Networks Junos OS on MX Series: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 and the subsequent SRs (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 and the SRs based on 18.3R2; 18.4R2 and the SRs based on 18.4R2; 19.1R1 and the SRs based on 19.1R1; 19.2R1 and the SRs based on 19.2R1; 19.3R1 and the SRs based on 19.3R1."}], "exploits": [{"lang": "en", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"description": "TBD", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-07-17T18:40:43", "orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "shortName": "juniper"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://kb.juniper.net/JSA11037"}], "solutions": [{"lang": "en", "value": "The following software releases have been updated to resolve this specific issue: 17.2R2-S8, 17.3R3-S6, 17.4R3-S1, 18.1R3-S9, 18.2R3-S3, 18.3R3, 18.4R3, 19.1R2, 19.2R2, 19.3R2, 19.4R1, and all subsequent releases."}], "source": {"advisory": "JSA11037", "defect": ["1453811"], "discovery": "USER"}, "title": "Junos OS: MX Series: Denial of Service vulnerability in MS-PIC component on MS-MIC or MS-MPC", "workarounds": [{"lang": "en", "value": "There are no known workarounds for this issue."}], "x_generator": {"engine": "Vulnogram 0.0.9"}, "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "sirt@juniper.net", "DATE_PUBLIC": "2020-07-08T07:00:00.000Z", "ID": "CVE-2020-1650", "STATE": "PUBLIC", "TITLE": "Junos OS: MX Series: Denial of Service vulnerability in MS-PIC component on MS-MIC or MS-MPC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Junos OS", "version": {"version_data": [{"platform": "MX Series", "version_affected": "=", "version_name": "17.2", "version_value": "17.2R2-S7"}, {"platform": "MX Series", "version_affected": "=", "version_name": "17.3", "version_value": "17.3R3-S4, 17.3R3-S5"}, {"platform": "MX Series", "version_affected": ">=", "version_name": "17.4", "version_value": "17.4R2-S4"}, {"platform": "MX Series", "version_affected": "=", "version_name": "17.4", "version_value": "17.4R3"}, {"platform": "MX Series", "version_affected": "=", "version_name": "18.1", "version_value": "18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8"}, {"platform": "MX Series", "version_affected": "=", "version_name": "18.2", "version_value": "18.2R3, 18.2R3-S1, 18.2R3-S2"}, {"platform": "MX Series", "version_affected": ">=", "version_name": "18.3", "version_value": "18.3R2"}, {"platform": "MX Series", "version_affected": "<", "version_name": "18.3", "version_value": "18.3R3"}, {"platform": "MX Series", "version_affected": ">=", "version_name": "18.4", "version_value": "18.4R2"}, {"platform": "MX Series", "version_affected": "<", "version_name": "18.4", "version_value": "18.4R3"}, {"platform": "MX Series", "version_affected": ">=", "version_name": "19.1", "version_value": "19.1R1"}, {"platform": "MX Series", "version_affected": "<", "version_name": "19.1", "version_value": "19.1R3"}, {"platform": "MX Series", "version_affected": ">=", "version_name": "19.2", "version_value": "19.2R1"}, {"platform": "MX Series", "version_affected": "<", "version_name": "19.2", "version_value": "19.2R2"}, {"platform": "MX Series", "version_affected": ">=", "version_name": "19.3", "version_value": "19.3R1"}, {"platform": "MX Series", "version_affected": "<", "version_name": "19.3", "version_value": "19.3R3"}]}}]}, "vendor_name": "Juniper Networks"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending these specific packets, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a prolonged Denial of Service. This issue affects MX Series devices using MS-PIC, MS-MIC or MS-MPC service cards with any service configured. This issue affects Juniper Networks Junos OS on MX Series: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 and the subsequent SRs (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 and the SRs based on 18.3R2; 18.4R2 and the SRs based on 18.4R2; 19.1R1 and the SRs based on 19.1R1; 19.2R1 and the SRs based on 19.2R1; 19.3R1 and the SRs based on 19.3R1."}]}, "exploit": [{"lang": "en", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "generator": {"engine": "Vulnogram 0.0.9"}, "impact": {"cvss": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "TBD"}]}]}, "references": {"reference_data": [{"name": "https://kb.juniper.net/JSA11037", "refsource": "CONFIRM", "url": "https://kb.juniper.net/JSA11037"}]}, "solution": [{"lang": "en", "value": "The following software releases have been updated to resolve this specific issue: 17.2R2-S8, 17.3R3-S6, 17.4R3-S1, 18.1R3-S9, 18.2R3-S3, 18.3R3, 18.4R3, 19.1R2, 19.2R2, 19.3R2, 19.4R1, and all subsequent releases."}], "source": {"advisory": "JSA11037", "defect": ["1453811"], "discovery": "USER"}, "work_around": [{"lang": "en", "value": "There are no known workarounds for this issue."}]}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T06:46:30.320Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://kb.juniper.net/JSA11037"}]}]}, "cveMetadata": {"assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "assignerShortName": "juniper", "cveId": "CVE-2020-1650", "datePublished": "2020-07-17T18:40:43.159716Z", "dateReserved": "2019-11-04T00:00:00", "dateUpdated": "2024-09-16T20:22:04.230Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

platforms : [ »

0 : MX Series (string)

]

product : Junos OS (string)

vendor : Juniper Networks (string)

versions : [ »

0 : { »

status : affected (string)

version : 17.2R2-S7 (string)

}

1 : { »

status : affected (string)

version : 17.3R3-S4, 17.3R3-S5 (string)

}

2 : { »

status : affected (string)

version : 17.4R3 (string)

}

3 : { »

status : affected (string)

version : 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8 (string)

}

4 : { »

status : affected (string)

version : 18.2R3, 18.2R3-S1, 18.2R3-S2 (string)

}

5 : { »

lessThan : 17.4* (string)

status : affected (string)

version : 17.4R2-S4 (string)

versionType : custom (string)

}

6 : { »

changes : [ »

0 : { »

at : 18.3R3 (string)

status : unaffected (string)

}

]

lessThan : 18.3* (string)

status : affected (string)

version : 18.3R2 (string)

versionType : custom (string)

}

7 : { »

changes : [ »

0 : { »

at : 18.4R3 (string)

status : unaffected (string)

}

]

lessThan : 18.4* (string)

status : affected (string)

version : 18.4R2 (string)

versionType : custom (string)

}

8 : { »

changes : [ »

0 : { »

at : 19.1R3 (string)

status : unaffected (string)

}

]

lessThan : 19.1* (string)

status : affected (string)

version : 19.1R1 (string)

versionType : custom (string)

}

9 : { »

changes : [ »

0 : { »

at : 19.2R2 (string)

status : unaffected (string)

}

]

lessThan : 19.2* (string)

status : affected (string)

version : 19.2R1 (string)

versionType : custom (string)

}

10 : { »

changes : [ »

0 : { »

at : 19.3R3 (string)

status : unaffected (string)

}

]

lessThan : 19.3* (string)

status : affected (string)

version : 19.3R1 (string)

versionType : custom (string)

}

]

}

]

datePublic : 2020-07-08T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending these specific packets, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a prolonged Denial of Service. This issue affects MX Series devices using MS-PIC, MS-MIC or MS-MPC service cards with any service configured. This issue affects Juniper Networks Junos OS on MX Series: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 and the subsequent SRs (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 and the SRs based on 18.3R2; 18.4R2 and the SRs based on 18.4R2; 19.1R1 and the SRs based on 19.1R1; 19.2R1 and the SRs based on 19.2R1; 19.3R1 and the SRs based on 19.3R1. (string)

}

]

exploits : [ »

0 : { »

lang : en (string)

value : Juniper SIRT is not aware of any malicious exploitation of this vulnerability. (string)

}

]

metrics : [ »

0 : { »

cvssV3_1 : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : TBD (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2020-07-17T18:40:43 (string)

orgId : 8cbe9d5a-a066-4c94-8978-4b15efeae968 (string)

shortName : juniper (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : https://kb.juniper.net/JSA11037 (string)

}

]

solutions : [ »

0 : { »

lang : en (string)

value : The following software releases have been updated to resolve this specific issue: 17.2R2-S8, 17.3R3-S6, 17.4R3-S1, 18.1R3-S9, 18.2R3-S3, 18.3R3, 18.4R3, 19.1R2, 19.2R2, 19.3R2, 19.4R1, and all subsequent releases. (string)

}

]

source : { »

advisory : JSA11037 (string)

defect : [ »

0 : 1453811 (string)

]

discovery : USER (string)

}

title : Junos OS: MX Series: Denial of Service vulnerability in MS-PIC component on MS-MIC or MS-MPC (string)

workarounds : [ »

0 : { »

lang : en (string)

value : There are no known workarounds for this issue. (string)

}

]

x_generator : { »

engine : Vulnogram 0.0.9 (string)

}

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : sirt@juniper.net (string)

DATE_PUBLIC : 2020-07-08T07:00:00.000Z (string)

ID : CVE-2020-1650 (string)

STATE : PUBLIC (string)

TITLE : Junos OS: MX Series: Denial of Service vulnerability in MS-PIC component on MS-MIC or MS-MPC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : Junos OS (string)

version : { »

version_data : [ »

0 : { »

platform : MX Series (string)

version_affected : = (string)

version_name : 17.2 (string)

version_value : 17.2R2-S7 (string)

}

1 : { »

platform : MX Series (string)

version_affected : = (string)

version_name : 17.3 (string)

version_value : 17.3R3-S4, 17.3R3-S5 (string)

}

2 : { »

platform : MX Series (string)

version_affected : >= (string)

version_name : 17.4 (string)

version_value : 17.4R2-S4 (string)

}

3 : { »

platform : MX Series (string)

version_affected : = (string)

version_name : 17.4 (string)

version_value : 17.4R3 (string)

}

4 : { »

platform : MX Series (string)

version_affected : = (string)

version_name : 18.1 (string)

version_value : 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8 (string)

}

5 : { »

platform : MX Series (string)

version_affected : = (string)

version_name : 18.2 (string)

version_value : 18.2R3, 18.2R3-S1, 18.2R3-S2 (string)

}

6 : { »

platform : MX Series (string)

version_affected : >= (string)

version_name : 18.3 (string)

version_value : 18.3R2 (string)

}

7 : { »

platform : MX Series (string)

version_affected : < (string)

version_name : 18.3 (string)

version_value : 18.3R3 (string)

}

8 : { »

platform : MX Series (string)

version_affected : >= (string)

version_name : 18.4 (string)

version_value : 18.4R2 (string)

}

9 : { »

platform : MX Series (string)

version_affected : < (string)

version_name : 18.4 (string)

version_value : 18.4R3 (string)

}

10 : { »

platform : MX Series (string)

version_affected : >= (string)

version_name : 19.1 (string)

version_value : 19.1R1 (string)

}

11 : { »

platform : MX Series (string)

version_affected : < (string)

version_name : 19.1 (string)

version_value : 19.1R3 (string)

}

12 : { »

platform : MX Series (string)

version_affected : >= (string)

version_name : 19.2 (string)

version_value : 19.2R1 (string)

}

13 : { »

platform : MX Series (string)

version_affected : < (string)

version_name : 19.2 (string)

version_value : 19.2R2 (string)

}

14 : { »

platform : MX Series (string)

version_affected : >= (string)

version_name : 19.3 (string)

version_value : 19.3R1 (string)

}

15 : { »

platform : MX Series (string)

version_affected : < (string)

version_name : 19.3 (string)

version_value : 19.3R3 (string)

}

]

}

]

}

vendor_name : Juniper Networks (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending these specific packets, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a prolonged Denial of Service. This issue affects MX Series devices using MS-PIC, MS-MIC or MS-MPC service cards with any service configured. This issue affects Juniper Networks Junos OS on MX Series: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 and the subsequent SRs (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 and the SRs based on 18.3R2; 18.4R2 and the SRs based on 18.4R2; 19.1R1 and the SRs based on 19.1R1; 19.2R1 and the SRs based on 19.2R1; 19.3R1 and the SRs based on 19.3R1. (string)

}

]

}

exploit : [ »

0 : { »

lang : en (string)

value : Juniper SIRT is not aware of any malicious exploitation of this vulnerability. (string)

}

]

generator : { »

engine : Vulnogram 0.0.9 (string)

}

impact : { »

cvss : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : TBD (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : https://kb.juniper.net/JSA11037 (string)

refsource : CONFIRM (string)

url : https://kb.juniper.net/JSA11037 (string)

}

]

}

solution : [ »

0 : { »

lang : en (string)

value : The following software releases have been updated to resolve this specific issue: 17.2R2-S8, 17.3R3-S6, 17.4R3-S1, 18.1R3-S9, 18.2R3-S3, 18.3R3, 18.4R3, 19.1R2, 19.2R2, 19.3R2, 19.4R1, and all subsequent releases. (string)

}

]

source : { »

advisory : JSA11037 (string)

defect : [ »

0 : 1453811 (string)

]

discovery : USER (string)

}

work_around : [ »

0 : { »

lang : en (string)

value : There are no known workarounds for this issue. (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-04T06:46:30.320Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : https://kb.juniper.net/JSA11037 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8cbe9d5a-a066-4c94-8978-4b15efeae968 (string)

assignerShortName : juniper (string)

cveId : CVE-2020-1650 (string)

datePublished : 2020-07-17T18:40:43.159716Z (string)

dateReserved : 2019-11-04T00:00:00 (string)

dateUpdated : 2024-09-16T20:22:04.230Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:17.2:r2-s7:*:*:*:*:*:*", "matchCriteriaId": "C6788EE2-B0DA-470E-B72E-E8D5CCFB5259", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s4:*:*:*:*:*:*", "matchCriteriaId": "2B482BCC-1F0C-47AA-B63B-1B39CEF7B2C0", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s5:*:*:*:*:*:*", "matchCriteriaId": "A636F9F2-2DA7-4A27-AD80-FD1B34DFCA94", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s6:*:*:*:*:*:*", "matchCriteriaId": "4EC7D216-D8F3-4ABD-97C9-4C9FB6DF64FF", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s7:*:*:*:*:*:*", "matchCriteriaId": "5E327643-D8D8-4EFA-9F38-BA862A919501", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s8:*:*:*:*:*:*", "matchCriteriaId": "1BC6CE1C-9DD8-429E-BDC2-251D8C8674E3", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r2-s9:*:*:*:*:*:*", "matchCriteriaId": "63B00B4F-3E65-4CB2-807D-43908B570AE6", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:17.4:r3:*:*:*:*:*:*", "matchCriteriaId": "8732E25A-9073-4C7B-9E89-C02368728EB4", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r1:*:*:*:*:*:*", "matchCriteriaId": "B0A756E2-C320-405A-B24F-7C5022649E5A", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r2:*:*:*:*:*:*", "matchCriteriaId": "2EF6F4C1-6A7E-474F-89BC-7A3C50FD8CAC", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s3:*:*:*:*:*:*", "matchCriteriaId": "A14CE132-C56B-43D8-A248-AB6A2D1A7B6C", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s4:*:*:*:*:*:*", "matchCriteriaId": "73978DD8-BD92-4872-8F35-AF2B9BCA1ECB", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s5:*:*:*:*:*:*", "matchCriteriaId": "678F57D1-2595-4AF3-BB87-AF2E1FE3CBB9", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s6:*:*:*:*:*:*", "matchCriteriaId": "7988CE92-71D2-4EEC-B596-4A60E2C1136A", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s7:*:*:*:*:*:*", "matchCriteriaId": "330D176F-8DAD-440C-A623-44FA233FAB01", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.1:r3-s8:*:*:*:*:*:*", "matchCriteriaId": "8CC5EAB8-1364-4325-9F01-BE7CC479C29D", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r1:*:*:*:*:*:*", "matchCriteriaId": "167EEC4F-729E-47C2-B0F8-E8108CE3E985", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r1-s3:*:*:*:*:*:*", "matchCriteriaId": "A893CCE5-96B8-44A1-ABEF-6AB9B527B2FB", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r1-s4:*:*:*:*:*:*", "matchCriteriaId": "42203801-E2E7-4DCF-ABBB-D23A91B2A9FF", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r2:*:*:*:*:*:*", "matchCriteriaId": "5F711936-33A1-47FC-A6A0-A63088915815", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r3:*:*:*:*:*:*", "matchCriteriaId": "B670F988-78F2-4BC6-B7FC-E34C280F67DC", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r3-s1:*:*:*:*:*:*", "matchCriteriaId": "2F9451C7-6466-4AC9-9A7F-90A2817AED6C", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.2:r3-s2:*:*:*:*:*:*", "matchCriteriaId": "871CA952-C5EC-4A25-8EF0-C2EC484F7DE9", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r2:*:*:*:*:*:*", "matchCriteriaId": "B7A3FBD3-5399-42A9-9BD9-E3C981CBD6DB", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s1:*:*:*:*:*:*", "matchCriteriaId": "4EBD361C-8B4D-43EF-8B82-9FE165D8206E", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s2:*:*:*:*:*:*", "matchCriteriaId": "6E7539C4-6208-43EB-9A0B-4852D0CE0FA1", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.3:r2-s3:*:*:*:*:*:*", "matchCriteriaId": "35299B02-DC75-458D-B86D-8A0DB95B06AA", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2:*:*:*:*:*:*", "matchCriteriaId": "D59D7A31-128B-4034-862B-8EF3CE3EE949", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s1:*:*:*:*:*:*", "matchCriteriaId": "0C5E097B-B79E-4E6A-9291-C8CB9674FED5", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s2:*:*:*:*:*:*", "matchCriteriaId": "819FA3ED-F934-4B20-BC0E-D638ACCB7787", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:18.4:r2-s3:*:*:*:*:*:*", "matchCriteriaId": "3D7D773A-4988-4D7C-A105-1885EBE14426", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1:*:*:*:*:*:*", "matchCriteriaId": "5332B70A-F6B0-4C3B-90E2-5CBFB3326126", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s1:*:*:*:*:*:*", "matchCriteriaId": "81439FE8-5405-45C2-BC04-9823D2009A77", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s2:*:*:*:*:*:*", "matchCriteriaId": "E506138D-043E-485D-B485-94A2AB75F8E7", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:19.1:r1-s3:*:*:*:*:*:*", "matchCriteriaId": "0EF3C901-3599-463F-BEFB-8858768DC195", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1:*:*:*:*:*:*", "matchCriteriaId": "4CA3060F-1800-4A06-A453-FB8CE4B65312", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s1:*:*:*:*:*:*", "matchCriteriaId": "9A5B337A-727C-4767-AD7B-E0F7F99EB46F", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:19.2:r1-s2:*:*:*:*:*:*", "matchCriteriaId": "16FDE60B-7A99-4683-BC14-530B5B005F8B", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r1:*:*:*:*:*:*", "matchCriteriaId": "B8110DA9-54B1-43CF-AACB-76EABE0C9EF6", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:19.3:r1-s1:*:*:*:*:*:*", "matchCriteriaId": "11B5CC5A-1959-4113-BFCF-E4BA63D918C1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:juniper:mx10:-:*:*:*:*:*:*:*", "matchCriteriaId": "52699E2B-450A-431C-81E3-DC4483C8B4F2", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx10000:-:*:*:*:*:*:*:*", "matchCriteriaId": "D97AF6F8-3D50-4D35-BCB1-54E3BEC69B9F", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx10003:-:*:*:*:*:*:*:*", "matchCriteriaId": "D5627740-42E3-4FB1-B8B9-0B768AFFA1EC", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx104:-:*:*:*:*:*:*:*", "matchCriteriaId": "F72C850A-0530-4DB7-A553-7E19F82122B5", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx150:-:*:*:*:*:*:*:*", "matchCriteriaId": "7FE2089C-F341-4DC1-B76D-633BC699306D", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx2008:-:*:*:*:*:*:*:*", "matchCriteriaId": "2FEF33EB-B2E0-42EF-A1BB-D41021B6D08F", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx2010:-:*:*:*:*:*:*:*", "matchCriteriaId": "27175D9A-CA2C-4218-8042-835E25DFCA43", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx2020:-:*:*:*:*:*:*:*", "matchCriteriaId": "00C7FC57-8ACF-45AA-A227-7E3B350FD24F", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx204:-:*:*:*:*:*:*:*", "matchCriteriaId": "2754C2DF-DF6E-4109-9463-38B4E0465B77", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx240:-:*:*:*:*:*:*:*", "matchCriteriaId": "F4A26704-A6A4-4C4F-9E12-A0A0259491EF", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx40:-:*:*:*:*:*:*:*", "matchCriteriaId": "C982A2FF-A1F9-4830-BAB6-77CFCE1F093F", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx480:-:*:*:*:*:*:*:*", "matchCriteriaId": "104858BD-D31D-40E0-8524-2EC311F10EAC", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx5:-:*:*:*:*:*:*:*", "matchCriteriaId": "3B557965-0040-4048-B56C-F564FF28635B", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx80:-:*:*:*:*:*:*:*", "matchCriteriaId": "EB875EBD-A3CD-4466-B2A3-39D47FF94592", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:mx960:-:*:*:*:*:*:*:*", "matchCriteriaId": "B5E08E1E-0FE4-4294-9497-BBFFECA2A220", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending these specific packets, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a prolonged Denial of Service. This issue affects MX Series devices using MS-PIC, MS-MIC or MS-MPC service cards with any service configured. This issue affects Juniper Networks Junos OS on MX Series: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 and the subsequent SRs (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 and the SRs based on 18.3R2; 18.4R2 and the SRs based on 18.4R2; 19.1R1 and the SRs based on 19.1R1; 19.2R1 and the SRs based on 19.2R1; 19.3R1 and the SRs based on 19.3R1."}, {"lang": "es", "value": "En Juniper Networks Junos MX Series con la tarjeta de servicio configurada, la recepci\u00f3n de un flujo de paquetes espec\u00edficos puede bloquear el componente MS-PIC en MS-MIC o MS-MPC. Al enviar continuamente estos paquetes espec\u00edficos, un atacante puede derribar de forma repetida MS-PIC en MS-MIC/MS-MPC causando una Denegaci\u00f3n de Servicio prolongada. Este problema afecta a los dispositivos de la Serie MX que utilizan tarjetas de servicio MS-PIC, MS-MIC o MS-MPC con cualquier servicio configurado. Este problema afecta a Juniper Networks Junos OS en la Serie MX: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 y los SR posteriores (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 y los SR basados ??en 18.3R2; 18.4R2 y los SR basados ??en 18.4R2; 19.1R1 y los SR basados ??en 19.1R1; 19.2R1 y los SR basados ??en 19.2R1; 19.3R1 y los SR basados ??en 19.3R1"}], "id": "CVE-2020-1650", "lastModified": "2024-11-21T05:11:05.067", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "sirt@juniper.net", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-07-17T19:15:13.470", "references": [{"source": "sirt@juniper.net", "tags": ["Vendor Advisory"], "url": "https://kb.juniper.net/JSA11037"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://kb.juniper.net/JSA11037"}], "sourceIdentifier": "sirt@juniper.net", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:juniper:junos:17.2:r2-s7:*:*:*:*:*:* (string)

matchCriteriaId : C6788EE2-B0DA-470E-B72E-E8D5CCFB5259 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:juniper:junos:17.4:r2-s4:*:*:*:*:*:* (string)

matchCriteriaId : 2B482BCC-1F0C-47AA-B63B-1B39CEF7B2C0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:juniper:junos:17.4:r2-s5:*:*:*:*:*:* (string)

matchCriteriaId : A636F9F2-2DA7-4A27-AD80-FD1B34DFCA94 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:juniper:junos:17.4:r2-s6:*:*:*:*:*:* (string)

matchCriteriaId : 4EC7D216-D8F3-4ABD-97C9-4C9FB6DF64FF (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:juniper:junos:17.4:r2-s7:*:*:*:*:*:* (string)

matchCriteriaId : 5E327643-D8D8-4EFA-9F38-BA862A919501 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:juniper:junos:17.4:r2-s8:*:*:*:*:*:* (string)

matchCriteriaId : 1BC6CE1C-9DD8-429E-BDC2-251D8C8674E3 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:juniper:junos:17.4:r2-s9:*:*:*:*:*:* (string)

matchCriteriaId : 63B00B4F-3E65-4CB2-807D-43908B570AE6 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:juniper:junos:17.4:r3:*:*:*:*:*:* (string)

matchCriteriaId : 8732E25A-9073-4C7B-9E89-C02368728EB4 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:juniper:junos:18.1:r1:*:*:*:*:*:* (string)

matchCriteriaId : B0A756E2-C320-405A-B24F-7C5022649E5A (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:juniper:junos:18.1:r2:*:*:*:*:*:* (string)

matchCriteriaId : 2EF6F4C1-6A7E-474F-89BC-7A3C50FD8CAC (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:juniper:junos:18.1:r3-s3:*:*:*:*:*:* (string)

matchCriteriaId : A14CE132-C56B-43D8-A248-AB6A2D1A7B6C (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:juniper:junos:18.1:r3-s4:*:*:*:*:*:* (string)

matchCriteriaId : 73978DD8-BD92-4872-8F35-AF2B9BCA1ECB (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:juniper:junos:18.1:r3-s5:*:*:*:*:*:* (string)

matchCriteriaId : 678F57D1-2595-4AF3-BB87-AF2E1FE3CBB9 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:juniper:junos:18.1:r3-s6:*:*:*:*:*:* (string)

matchCriteriaId : 7988CE92-71D2-4EEC-B596-4A60E2C1136A (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:juniper:junos:18.1:r3-s7:*:*:*:*:*:* (string)

matchCriteriaId : 330D176F-8DAD-440C-A623-44FA233FAB01 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:juniper:junos:18.1:r3-s8:*:*:*:*:*:* (string)

matchCriteriaId : 8CC5EAB8-1364-4325-9F01-BE7CC479C29D (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:juniper:junos:18.2:r1:*:*:*:*:*:* (string)

matchCriteriaId : 167EEC4F-729E-47C2-B0F8-E8108CE3E985 (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:juniper:junos:18.2:r1-s3:*:*:*:*:*:* (string)

matchCriteriaId : A893CCE5-96B8-44A1-ABEF-6AB9B527B2FB (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:o:juniper:junos:18.2:r1-s4:*:*:*:*:*:* (string)

matchCriteriaId : 42203801-E2E7-4DCF-ABBB-D23A91B2A9FF (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:o:juniper:junos:18.2:r2:*:*:*:*:*:* (string)

matchCriteriaId : 5F711936-33A1-47FC-A6A0-A63088915815 (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:o:juniper:junos:18.2:r3:*:*:*:*:*:* (string)

matchCriteriaId : B670F988-78F2-4BC6-B7FC-E34C280F67DC (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:o:juniper:junos:18.2:r3-s1:*:*:*:*:*:* (string)

matchCriteriaId : 2F9451C7-6466-4AC9-9A7F-90A2817AED6C (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:o:juniper:junos:18.2:r3-s2:*:*:*:*:*:* (string)

matchCriteriaId : 871CA952-C5EC-4A25-8EF0-C2EC484F7DE9 (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:o:juniper:junos:18.3:r2:*:*:*:*:*:* (string)

matchCriteriaId : B7A3FBD3-5399-42A9-9BD9-E3C981CBD6DB (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:o:juniper:junos:18.3:r2-s1:*:*:*:*:*:* (string)

matchCriteriaId : 4EBD361C-8B4D-43EF-8B82-9FE165D8206E (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:o:juniper:junos:18.3:r2-s2:*:*:*:*:*:* (string)

matchCriteriaId : 6E7539C4-6208-43EB-9A0B-4852D0CE0FA1 (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:o:juniper:junos:18.3:r2-s3:*:*:*:*:*:* (string)

matchCriteriaId : 35299B02-DC75-458D-B86D-8A0DB95B06AA (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:o:juniper:junos:18.4:r2:*:*:*:*:*:* (string)

matchCriteriaId : D59D7A31-128B-4034-862B-8EF3CE3EE949 (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:o:juniper:junos:18.4:r2-s1:*:*:*:*:*:* (string)

matchCriteriaId : 0C5E097B-B79E-4E6A-9291-C8CB9674FED5 (string)

vulnerable : true (boolean)

}

29 : { »

criteria : cpe:2.3:o:juniper:junos:18.4:r2-s2:*:*:*:*:*:* (string)

matchCriteriaId : 819FA3ED-F934-4B20-BC0E-D638ACCB7787 (string)

vulnerable : true (boolean)

}

30 : { »

criteria : cpe:2.3:o:juniper:junos:18.4:r2-s3:*:*:*:*:*:* (string)

matchCriteriaId : 3D7D773A-4988-4D7C-A105-1885EBE14426 (string)

vulnerable : true (boolean)

}

31 : { »

criteria : cpe:2.3:o:juniper:junos:19.1:r1:*:*:*:*:*:* (string)

matchCriteriaId : 5332B70A-F6B0-4C3B-90E2-5CBFB3326126 (string)

vulnerable : true (boolean)

}

32 : { »

criteria : cpe:2.3:o:juniper:junos:19.1:r1-s1:*:*:*:*:*:* (string)

matchCriteriaId : 81439FE8-5405-45C2-BC04-9823D2009A77 (string)

vulnerable : true (boolean)

}

33 : { »

criteria : cpe:2.3:o:juniper:junos:19.1:r1-s2:*:*:*:*:*:* (string)

matchCriteriaId : E506138D-043E-485D-B485-94A2AB75F8E7 (string)

vulnerable : true (boolean)

}

34 : { »

criteria : cpe:2.3:o:juniper:junos:19.1:r1-s3:*:*:*:*:*:* (string)

matchCriteriaId : 0EF3C901-3599-463F-BEFB-8858768DC195 (string)

vulnerable : true (boolean)

}

35 : { »

criteria : cpe:2.3:o:juniper:junos:19.2:r1:*:*:*:*:*:* (string)

matchCriteriaId : 4CA3060F-1800-4A06-A453-FB8CE4B65312 (string)

vulnerable : true (boolean)

}

36 : { »

criteria : cpe:2.3:o:juniper:junos:19.2:r1-s1:*:*:*:*:*:* (string)

matchCriteriaId : 9A5B337A-727C-4767-AD7B-E0F7F99EB46F (string)

vulnerable : true (boolean)

}

37 : { »

criteria : cpe:2.3:o:juniper:junos:19.2:r1-s2:*:*:*:*:*:* (string)

matchCriteriaId : 16FDE60B-7A99-4683-BC14-530B5B005F8B (string)

vulnerable : true (boolean)

}

38 : { »

criteria : cpe:2.3:o:juniper:junos:19.3:r1:*:*:*:*:*:* (string)

matchCriteriaId : B8110DA9-54B1-43CF-AACB-76EABE0C9EF6 (string)

vulnerable : true (boolean)

}

39 : { »

criteria : cpe:2.3:o:juniper:junos:19.3:r1-s1:*:*:*:*:*:* (string)

matchCriteriaId : 11B5CC5A-1959-4113-BFCF-E4BA63D918C1 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:juniper:mx10:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 52699E2B-450A-431C-81E3-DC4483C8B4F2 (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:juniper:mx10000:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D97AF6F8-3D50-4D35-BCB1-54E3BEC69B9F (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:juniper:mx10003:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D5627740-42E3-4FB1-B8B9-0B768AFFA1EC (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:juniper:mx104:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F72C850A-0530-4DB7-A553-7E19F82122B5 (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:juniper:mx150:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7FE2089C-F341-4DC1-B76D-633BC699306D (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:juniper:mx2008:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 2FEF33EB-B2E0-42EF-A1BB-D41021B6D08F (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:juniper:mx2010:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 27175D9A-CA2C-4218-8042-835E25DFCA43 (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:juniper:mx2020:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 00C7FC57-8ACF-45AA-A227-7E3B350FD24F (string)

vulnerable : false (boolean)

}

8 : { »

criteria : cpe:2.3:h:juniper:mx204:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 2754C2DF-DF6E-4109-9463-38B4E0465B77 (string)

vulnerable : false (boolean)

}

9 : { »

criteria : cpe:2.3:h:juniper:mx240:-:*:*:*:*:*:*:* (string)

matchCriteriaId : F4A26704-A6A4-4C4F-9E12-A0A0259491EF (string)

vulnerable : false (boolean)

}

10 : { »

criteria : cpe:2.3:h:juniper:mx40:-:*:*:*:*:*:*:* (string)

matchCriteriaId : C982A2FF-A1F9-4830-BAB6-77CFCE1F093F (string)

vulnerable : false (boolean)

}

11 : { »

criteria : cpe:2.3:h:juniper:mx480:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 104858BD-D31D-40E0-8524-2EC311F10EAC (string)

vulnerable : false (boolean)

}

12 : { »

criteria : cpe:2.3:h:juniper:mx5:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 3B557965-0040-4048-B56C-F564FF28635B (string)

vulnerable : false (boolean)

}

13 : { »

criteria : cpe:2.3:h:juniper:mx80:-:*:*:*:*:*:*:* (string)

matchCriteriaId : EB875EBD-A3CD-4466-B2A3-39D47FF94592 (string)

vulnerable : false (boolean)

}

14 : { »

criteria : cpe:2.3:h:juniper:mx960:-:*:*:*:*:*:*:* (string)

matchCriteriaId : B5E08E1E-0FE4-4294-9497-BBFFECA2A220 (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : On Juniper Networks Junos MX Series with service card configured, receipt of a stream of specific packets may crash the MS-PIC component on MS-MIC or MS-MPC. By continuously sending these specific packets, an attacker can repeatedly bring down MS-PIC on MS-MIC/MS-MPC causing a prolonged Denial of Service. This issue affects MX Series devices using MS-PIC, MS-MIC or MS-MPC service cards with any service configured. This issue affects Juniper Networks Junos OS on MX Series: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 and the subsequent SRs (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 and the SRs based on 18.3R2; 18.4R2 and the SRs based on 18.4R2; 19.1R1 and the SRs based on 19.1R1; 19.2R1 and the SRs based on 19.2R1; 19.3R1 and the SRs based on 19.3R1. (string)

}

1 : { »

lang : es (string)

value : En Juniper Networks Junos MX Series con la tarjeta de servicio configurada, la recepción de un flujo de paquetes específicos puede bloquear el componente MS-PIC en MS-MIC o MS-MPC. Al enviar continuamente estos paquetes específicos, un atacante puede derribar de forma repetida MS-PIC en MS-MIC/MS-MPC causando una Denegación de Servicio prolongada. Este problema afecta a los dispositivos de la Serie MX que utilizan tarjetas de servicio MS-PIC, MS-MIC o MS-MPC con cualquier servicio configurado. Este problema afecta a Juniper Networks Junos OS en la Serie MX: 17.2R2-S7; 17.3R3-S4, 17.3R3-S5; 17.4R2-S4 y los SR posteriores (17.4R2-S5, 17.4R2-S6, etc.); 17.4R3; 18.1R3-S3, 18.1R3-S4, 18.1R3-S5, 18.1R3-S6, 18.1R3-S7, 18.1R3-S8; 18.2R3, 18.2R3-S1, 18.2R3-S2; 18.3R2 y los SR basados ??en 18.3R2; 18.4R2 y los SR basados ??en 18.4R2; 19.1R1 y los SR basados ??en 19.1R1; 19.2R1 y los SR basados ??en 19.2R1; 19.3R1 y los SR basados ??en 19.3R1 (string)

}

]

id : CVE-2020-1650 (string)

lastModified : 2024-11-21T05:11:05.067 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 5 (number)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:L/Au:N/C:N/I:N/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 3.6 (number)

source : sirt@juniper.net (string)

type : Secondary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : HIGH (string)

baseScore : 7.5 (number)

baseSeverity : HIGH (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2020-07-17T19:15:13.470 (string)

references : [ »

0 : { »

source : sirt@juniper.net (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://kb.juniper.net/JSA11037 (string)

}

1 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : https://kb.juniper.net/JSA11037 (string)

}

]

sourceIdentifier : sirt@juniper.net (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-noinfo (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object