Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-0019— Junos: Denial of service vulnerability in SNMP MIB-II subagent daemon (mib2d).

EPSS 0.34% · P57
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-0019

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Junos: Denial of service vulnerability in SNMP MIB-II subagent daemon (mib2d).
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in Junos OS SNMP MIB-II subagent daemon (mib2d) may allow a remote network based attacker to cause the mib2d process to crash resulting in a denial of service condition (DoS) for the SNMP subsystem. While a mib2d process crash can disrupt the network monitoring via SNMP, it does not impact routing, switching or firewall functionalities. SNMP is disabled by default on devices running Junos OS. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D76; 12.3 versions prior to 12.3R12-S7, 12.3R13; 12.3X48 versions prior to 12.3X48-D65; 14.1 versions prior to 14.1R9; 14.1X53 versions prior to 14.1X53-D130; 15.1 versions prior to 15.1F2-S20, 15.1F6-S10, 15.1R7; 15.1X49 versions prior to 15.1X49-D130; 15.1X53 versions prior to 15.1X53-D233, 15.1X53-D471, 15.1X53-D472, 15.1X53-D58, 15.1X53-D66; 16.1 versions prior to 16.1R5-S3, 16.1R7; 16.1X65 versions prior to 16.1X65-D47; 16.1X70 versions prior to 16.1X70-D10; 16.2 versions prior to 16.2R1-S6, 16.2R2-S5, 16.2R3; 17.1 versions prior to 17.1R2-S6, 17.1R3;
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Juniper Junos OS 输入验证漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Juniper Junos OS是美国瞻博网络(Juniper Networks)公司的一套专用于该公司的硬件系统的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Junos OS中的SNMP MIB-II子代理守护进程(mib2d)存在输入验证漏洞。远程攻击者可利用该漏洞造成mib2d崩溃,导致拒绝服务。以下版本受到影响:Juniper Junos OS 12.1X46版本,12.3版本,12.3X48版本,14.1版本,14.1X53版本,15.1版本,15.1X49
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
Juniper NetworksJunos OS 12.1X46 ~ 12.1X46-D76 -

II. Public POCs for CVE-2018-0019

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2018-0019

登录查看更多情报信息。

Same Patch Batch · Juniper Networks · 2018-04-11 · 8 CVEs total

CVE-2018-0016Junos OS: Kernel crash upon receipt of crafted CLNP datagrams
CVE-2018-0017SRX Series: Denial of service vulnerability in flowd daemon on devices configured with NAT
CVE-2018-0018SRX Series: A crafted packet may lead to information disclosure and firewall rule bypass d
CVE-2018-0020Junos OS: rpd daemon cores due to malformed BGP UPDATE packet
CVE-2018-0021Junos OS: Short MacSec keys may allow man-in-the-middle attacks.
CVE-2018-0022Junos OS: Mbuf leak due to processing MPLS packets in VPLS network.
CVE-2018-0023Junos Snapshot Administrator (JSNAPy) world writeable default configuration file permissio

IV. Related Vulnerabilities

Same product: Junos OS
Same vendor: Juniper Networks

V. Comments for CVE-2018-0019

No comments yet

Leave a comment