Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-0043— Junos OS: RPD process crashes upon receipt of a specific SNMP packet

EPSS 0.39% · P60
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-0043

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Junos OS: RPD process crashes upon receipt of a specific SNMP packet
Source: NVD (National Vulnerability Database)
Vulnerability Description
In MPLS environments, receipt of a specific SNMP packet may cause the routing protocol daemon (RPD) process to crash and restart. By continuously sending a specially crafted SNMP packet, an attacker can repetitively crash the RPD process causing prolonged denial of service. No other Juniper Networks products or platforms are affected by this issue. Affected releases are Juniper Networks Junos OS : 12.1X46 versions prior to 12.1X46-D77 on SRX Series; 12.3 versions prior to 12.3R12-S10; 12.3X48 versions prior to 12.3X48-D75 on SRX Series; 14.1X53 versions prior to 14.1X53-D48 on EX/QFX series; 15.1 versions prior to 15.1R4-S9, 15.1R7-S2; 15.1F6 versions prior to 15.1F6-S11; 15.1X49 versions prior to 15.1X49-D141, 15.1X49-D144, 15.1X49-D150 on SRX Series; 15.1X53 versions prior to 15.1X53-D234 on QFX5200/QFX5110 Series; 15.1X53 versions prior to 15.1X53-D68 on QFX10K Series; 15.1X53 versions prior to 15.1X53-D471, 15.1X53-D490 on NFX Series; 15.1X53 versions prior to 15.1X53-D590 on EX2300/EX3400 Series; 15.1X54 on ACX Series; 16.1 versions prior to 16.1R3-S10, 16.1R4-S11, 16.1R6-S5, 16.1R7; 16.1X65 versions prior to 16.1X65-D48; 16.2 versions prior to 16.2R2-S6; 17.1 versions prior to 17.1R2-S8, 17.1R3; 17.2 versions prior to 17.2R1-S7, 17.2R3; 17.2X75 versions prior to 17.2X75-D92, 17.2X75-D102, 17.2X75-D110; 17.3 versions prior to 17.3R3; 17.4 versions prior to 17.4R1-S4, 17.4R2; 18.1 versions prior to 18.1R1-S1, 18.1R2-S1, 18.1R3; 18.2X75 versions prior to 18.2X75-D10.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
不恰当的资源关闭或释放
Source: NVD (National Vulnerability Database)
Vulnerability Title
Juniper Networks Junos OS 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Juniper Networks Junos OS是美国瞻博网络(Juniper Networks)公司的一套专用于该公司的硬件设备的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Networks Junos OS中存在安全漏洞。攻击者可通过不断发送特制的SNMP数据包利用该漏洞造成RPD进程崩溃,导致拒绝服务。以下版本受到影响:Juniper Networks Junos OS 12.1X46版本,12.3版本,12.3X48版本,14.1X53版本,15.1版本,1
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
Juniper NetworksJunos OS 12.1X46 ~ 12.1X46-D77 -
Juniper NetworksJunos OS 12.3 ~ 12.3R12-S10 -
Juniper NetworksJunos OS 14.1X53 ~ 14.1X53-D48 -
Juniper NetworksJunos OS 15.1X53 ~ 15.1X53-D234 -
Juniper NetworksJunos OS 15.1X53 ~ 15.1X53-D68 -
Juniper NetworksJunos OS 15.1X53 ~ 15.1X53-D471 -
Juniper NetworksJunos OS 15.1X53 ~ 15.1X53-D590 -
Juniper NetworksJunos OS 15.1X54 -

II. Public POCs for CVE-2019-0043

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2019-0043

登录查看更多情报信息。

Same Patch Batch · Juniper Networks · 2019-04-10 · 16 CVEs total

CVE-2019-0008QFX5000 Series, EX4300, EX4600: A stack buffer overflow vulnerability in Packet Forwarding
CVE-2019-0019BGP packets can trigger rpd crash when BGP tracing is enabled.
CVE-2019-0028Junos OS: RPD process crashes due to specific BGP peer restarts condition.
CVE-2019-0031Junos OS: jdhcpd daemon memory consumption Denial of Service when receiving specific IPv6
CVE-2019-0032Junos Space Service Now and Service Insight: Organization username and password stored in
CVE-2019-0033SRX Series: A remote attacker may cause a high CPU Denial of Service to the device when pr
CVE-2019-0035Junos OS: 'set system ports console insecure' allows root password recovery on OAM volumes
CVE-2019-0036Junos OS: Firewall filter terms named "internal-1" and "internal-2" being ignored
CVE-2019-0037Junos OS: jdhcpd crash upon receipt of crafted DHCPv6 solicit message
CVE-2019-0038SRX Series: Crafted packets destined to fxp0 management interface on SRX340/SRX345 devices
CVE-2019-0039Junos OS: Login credentials are vulnerable to brute force attacks through the REST API
CVE-2019-0040Junos OS: Specially crafted packets sent to port 111 on any interface triggers responses f
CVE-2019-0041Junos OS: EX4300-MP Series: IP transit traffic can reach the control plane via loopback in
CVE-2019-0042Incorrect messages from Juniper Identity Management Service (JIMS) can trigger Denial of S
CVE-2019-0044Junos OS: SRX5000 series: Kernel crash (vmcore) upon receipt of a specific packet on fxp0

IV. Related Vulnerabilities

Same product: Junos OS
Same vendor: Juniper Networks
Same weakness: CWE-404

V. Comments for CVE-2019-0043

No comments yet

Leave a comment