CVE-2020-1634— Juniper Networks Junos OS 输入验证错误漏洞
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2020-1634の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
Junos OS: High-End SRX Series: Multicast traffic might cause all FPCs to reset.
ソース: NVD (National Vulnerability Database)
脆弱性説明
On High-End SRX Series devices, in specific configurations and when specific networking events or operator actions occur, an SPC receiving genuine multicast traffic may core. Subsequently, all FPCs in a chassis may reset causing a Denial of Service. This issue affects both IPv4 and IPv6. This issue affects: Juniper Networks Junos OS 12.3X48 version 12.3X48-D80 and later versions prior to 12.3X48-D95 on High-End SRX Series. This issue does not affect Branch SRX Series devices.
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Juniper Networks Junos OS 输入验证错误漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Juniper Networks Junos OS是美国瞻博网络(Juniper Networks)公司的一套专用于该公司的硬件设备的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Networks Junos OS 12.3X48中存在输入验证错误漏洞。攻击者可利用该漏洞造成全部FPCs重启,导致拒绝服务。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
| ベンダー | プロダクト | 影響を受けるバージョン | CPE | 購読 |
|---|---|---|---|---|
| Juniper Networks | Junos OS | 12.3X48-D80 ~ 12.3X48* | - |
II. CVE-2020-1634の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2020-1634のインテリジェンス情報
请登录查看更多情报信息。
Same Patch Batch · Juniper Networks · 2020-04-08 · 22 CVEs total
| CVE-2020-1614 | 10.0 CRITICAL | NFX250 Series: Hardcoded credentials in the vSRX VNF instance. |
| CVE-2020-1615 | 9.8 CRITICAL | Junos OS: vMX: Default credentials supplied in vMX configuration |
| CVE-2020-1613 | 8.6 HIGH | Junos OS: BGP session termination upon receipt of specific BGP FlowSpec advertisement. |
| CVE-2020-1639 | 7.5 HIGH | Junos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM conne |
| CVE-2020-1617 | 7.5 HIGH | Junos OS: PTX1000 and PTX10000 Series, QFX10000 Series using non-AFT architectures: A spec |
| CVE-2020-1626 | 7.5 HIGH | Junos OS Evolved: Denial of Service vulnerability in processing high rate of specific pack |
| CVE-2020-1627 | 7.5 HIGH | Junos OS: vMX and MX150: Denial of Service vulnerability in packet processing |
| CVE-2020-1638 | 7.5 HIGH | Junos OS & Junos OS Evolved: A specific IPv4 packet can lead to FPC restart. |
| CVE-2020-1637 | 7.2 HIGH | Junos OS: SRX Series: Unified Access Control (UAC) bypass vulnerability |
| CVE-2020-1625 | 6.5 MEDIUM | Junos OS: Kernel memory leak in virtual-memory due to interface flaps |
| CVE-2020-1618 | 6.3 MEDIUM | Junos OS: EX and QFX Series: Console port authentication bypass vulnerability |
| CVE-2020-1619 | 6.0 MEDIUM | Junos OS: QFX10K Series, EX9200 Series, MX Series, PTX Series: Privilege escalation vulner |
| CVE-2020-1629 | 5.9 MEDIUM | Junos OS: A race condition vulnerability may cause RPD daemon to crash when processing a B |
| CVE-2020-1624 | 5.5 MEDIUM | Junos OS Evolved: objmon logs may leak sensitive information |
| CVE-2020-1622 | 5.5 MEDIUM | Junos OS Evolved: EvoSharedObjStore may leak sensitive information |
| CVE-2020-1623 | 5.5 MEDIUM | Junos OS Evolved: ev.ops file may leak sensitive information |
| CVE-2020-1620 | 5.5 MEDIUM | Junos OS Evolved: Configd leaks hashes via log file and is world readable |
| CVE-2020-1621 | 5.5 MEDIUM | Junos OS Evolved: Configd leaks hashes via stream and is world readable |
| CVE-2020-1628 | 5.3 MEDIUM | Junos OS: EX4300: Traffic from the network internal to the device (128.0.0.0) may be forwa |
| CVE-2020-1616 | 5.3 MEDIUM | JATP Series: JATP Is susceptible to slow brute force attacks on the SSH service. |
Showing 20 of 22 CVEs. View all on vendor page →
IV. 関連脆弱性
同じ製品: Junos OS
- CVE-2026-33791
Junos OS and Junos OS Evolved: Execution of crafted CLI comm - CVE-2026-33790
Junos OS: SRX Series: In a NAT64 configuration, receipt of a - CVE-2026-33787
Junos OS: SRX1500, SRX4100, SRX4200, SRX4600: When a specifi - CVE-2026-33785
Junos OS: MX Series: Missing Authorization for specific 'req - CVE-2026-33781
Junos OS: EX Series, QFX Series: In a VXLAN scenario when sp
同じベンダー: Juniper Networks
- CVE-2026-33791
Junos OS and Junos OS Evolved: Execution of crafted CLI comm - CVE-2026-33790
Junos OS: SRX Series: In a NAT64 configuration, receipt of a - CVE-2026-33787
Junos OS: SRX1500, SRX4100, SRX4200, SRX4600: When a specifi - CVE-2026-33785
Junos OS: MX Series: Missing Authorization for specific 'req - CVE-2026-33784
JSI Virtual Lightweight Collector: Default password is not r
V. CVE-2020-1634へのコメント
まだコメントはありません