{ "CVE_data_meta": { "ASSIGNER": "sirt@juniper.net", "DATE_PUBLIC": "2021-04-14T16:00:00.000Z", "ID": "CVE-2021-0241", "STATE": "PUBLIC", "TITLE": "Junos OS: Receipt of specific DHCPv6 packet may cause jdhcpd to crash and restart" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Junos OS", "version": { "version_data": [ { "version_affected": "<", "version_name": "17.3", "version_value": "17.3R3-S11" }, { "version_affected": "<", "version_name": "17.4", "version_value": "17.4R3-S4" }, { "version_affected": "<", "version_name": "18.1", "version_value": "18.1R3-S12" }, { "version_affected": "<", "version_name": "18.2", "version_value": "18.2R3-S7" }, { "version_affected": "<", "version_name": "18.3", "version_value": "18.3R3-S4" }, { "version_affected": "<", "version_name": "18.4", "version_value": "18.4R3-S7" }, { "version_affected": "<", "version_name": "19.1", "version_value": "19.1R3-S4" }, { "version_affected": "<", "version_name": "19.2", "version_value": "19.2R3-S1" }, { "version_affected": "<", "version_name": "19.3", "version_value": "19.3R3-S1, 19.3R3-S2" }, { "version_affected": "<", "version_name": "19.4", "version_value": "19.4R3-S1" }, { "version_affected": "<", "version_name": "20.1", "version_value": "20.1R2, 20.1R3" }, { "version_affected": "<", "version_name": "20.2", "version_value": "20.2R2, 20.2R3" }, { "version_affected": "<", "version_name": "20.3", "version_value": "20.3R1-S2, 20.3R2" } ] } } ] }, "vendor_name": "Juniper Networks" } ] } }, "configuration": [ { "lang": "eng", "value": "The example of DHCPv6 local server configuration stanza affected by this issue is:\n [system services dhcp-local-server dhcpv6]\n\nThe example of configuration stanza for DHCPv6 Relay Agent affected by this issue is: \n [forwarding-options dhcp-relay dhcpv6]" } ], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "On Juniper Networks Junos OS platforms configured as DHCPv6 local server or DHCPv6 Relay Agent, Juniper Networks Dynamic Host Configuration Protocol Daemon (JDHCPD) process might crash with a core dump if a specific DHCPv6 packet is received, resulting in a restart of the daemon. The daemon automatically restarts without intervention, but continued receipt and processing of these specific packets will repeatedly crash the JDHCPD process and sustain the Denial of Service (DoS) condition. This issue only affects DHCPv6. DHCPv4 is not affected by this issue. This issue affects: Juniper Networks Junos OS 17.3 versions prior to 17.3R3-S11; 17.4 versions prior to 17.4R3-S4; 18.1 versions prior to 18.1R3-S12; 18.2 versions prior to 18.2R3-S7; 18.3 versions prior to 18.3R3-S4; 18.4 versions prior to 18.4R3-S7; 19.1 versions prior to 19.1R3-S4; 19.2 versions prior to 19.2R3-S1; 19.3 versions prior to 19.3R3-S1, 19.3R3-S2; 19.4 versions prior to 19.4R3-S1; 20.1 versions prior to 20.1R2, 20.1R3; 20.2 versions prior to 20.2R2, 20.2R3; 20.3 versions prior to 20.3R1-S2, 20.3R2." } ] }, "exploit": [ { "lang": "eng", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability." } ], "generator": { "engine": "Vulnogram 0.0.9" }, "impact": { "cvss": { "attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1" } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-703 Improper Check or Handling of Exceptional Conditions" } ] }, { "description": [ { "lang": "eng", "value": "Denial of Service (DoS)" } ] } ] }, "references": { "reference_data": [ { "refsource": "MISC", "url": "https://kb.juniper.net/JSA11168", "name": "https://kb.juniper.net/JSA11168" } ] }, "solution": [ { "lang": "eng", "value": "The following software releases have been updated to resolve this specific issue: Junos OS 17.3R3-S11, 17.4R3-S4, 18.1R3-S12, 18.2R3-S7, 18.3R3-S4, 18.4R3-S7, 19.1R3-S4, 19.2R3-S1, 19.3R3-S1, 19.3R3-S2, 19.4R3-S1, 20.1R2, 20.1R3, 20.2R2, 20.2R3, 20.3R1-S2, 20.3R2, 20.4R1, 21.1R1, and all subsequent releases.\n" } ], "source": { "advisory": "JSA11168", "defect": [ "1546166" ], "discovery": "USER" }, "work_around": [ { "lang": "eng", "value": "There are no viable workarounds for this issue." } ] }