CVE-2020-1639— Junos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM connectivity fault management process (CFM) to core.

CVSS 7.5 · High EPSS 0.54% · P68 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-1639

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Junos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM connectivity fault management process (CFM) to core.

Source: NVD (National Vulnerability Database)

Vulnerability Description

When an attacker sends a specific crafted Ethernet Operation, Administration, and Maintenance (Ethernet OAM) packet to a target device, it may improperly handle the incoming malformed data and fail to sanitize this incoming data resulting in an overflow condition. This overflow condition in Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) condition by coring the CFM daemon. Continued receipt of these packets may cause an extended Denial of Service condition. This issue affects: Juniper Networks Junos OS 12.3 versions prior to 12.3R12-S15; 12.3X48 versions prior to 12.3X48-D95 on SRX Series; 14.1X50 versions prior to 14.1X50-D145; 14.1X53 versions prior to 14.1X53-D47; 15.1 versions prior to 15.1R2; 15.1X49 versions prior to 15.1X49-D170 on SRX Series; 15.1X53 versions prior to 15.1X53-D67.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

对异常条件检查或处理不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

Juniper Networks Junos OS 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Juniper Networks Junos OS是美国瞻博网络（Juniper Networks）公司的一套专用于该公司的硬件设备的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Networks Junos OS中存在安全漏洞，该漏洞源于程序没有正确处理接收的畸形数据。攻击者可借助特制的数据包利用该漏洞造成拒绝服务。以下产品及版本受到影响：Juniper Networks Junos OS 12.3版本，12.3X48版本（SRX Series），14.1X50版本，

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Juniper Networks	Junos OS	12.3 ~ 12.3R12-S15	-
Juniper Networks	Junos OS	12.3X48 ~ 12.3X48-D95	-

II. Public POCs for CVE-2020-1639

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-1639

请登录查看更多情报信息。

https://kb.juniper.net/x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-1639

Same Patch Batch · Juniper Networks · 2020-04-08 · 22 CVEs total

CVE-2020-1614	10.0 CRITICAL	NFX250 Series: Hardcoded credentials in the vSRX VNF instance.
CVE-2020-1615	9.8 CRITICAL	Junos OS: vMX: Default credentials supplied in vMX configuration
CVE-2020-1613	8.6 HIGH	Junos OS: BGP session termination upon receipt of specific BGP FlowSpec advertisement.
CVE-2020-1634	7.5 HIGH	Junos OS: High-End SRX Series: Multicast traffic might cause all FPCs to reset.
CVE-2020-1617	7.5 HIGH	Junos OS: PTX1000 and PTX10000 Series, QFX10000 Series using non-AFT architectures: A spec
CVE-2020-1626	7.5 HIGH	Junos OS Evolved: Denial of Service vulnerability in processing high rate of specific pack
CVE-2020-1627	7.5 HIGH	Junos OS: vMX and MX150: Denial of Service vulnerability in packet processing
CVE-2020-1638	7.5 HIGH	Junos OS & Junos OS Evolved: A specific IPv4 packet can lead to FPC restart.
CVE-2020-1637	7.2 HIGH	Junos OS: SRX Series: Unified Access Control (UAC) bypass vulnerability
CVE-2020-1625	6.5 MEDIUM	Junos OS: Kernel memory leak in virtual-memory due to interface flaps
CVE-2020-1618	6.3 MEDIUM	Junos OS: EX and QFX Series: Console port authentication bypass vulnerability
CVE-2020-1619	6.0 MEDIUM	Junos OS: QFX10K Series, EX9200 Series, MX Series, PTX Series: Privilege escalation vulner
CVE-2020-1629	5.9 MEDIUM	Junos OS: A race condition vulnerability may cause RPD daemon to crash when processing a B
CVE-2020-1624	5.5 MEDIUM	Junos OS Evolved: objmon logs may leak sensitive information
CVE-2020-1622	5.5 MEDIUM	Junos OS Evolved: EvoSharedObjStore may leak sensitive information
CVE-2020-1623	5.5 MEDIUM	Junos OS Evolved: ev.ops file may leak sensitive information
CVE-2020-1620	5.5 MEDIUM	Junos OS Evolved: Configd leaks hashes via log file and is world readable
CVE-2020-1621	5.5 MEDIUM	Junos OS Evolved: Configd leaks hashes via stream and is world readable
CVE-2020-1628	5.3 MEDIUM	Junos OS: EX4300: Traffic from the network internal to the device (128.0.0.0) may be forwa
CVE-2020-1616	5.3 MEDIUM	JATP Series: JATP Is susceptible to slow brute force attacks on the SSH service.

Showing top 20 of 22 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Junos OS

Same vendor: Juniper Networks

Same weakness: CWE-703

V. Comments for CVE-2020-1639

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-1639— Junos OS: A crafted Ethernet OAM packet received by Junos may cause the Ethernet OAM connectivity fault management process (CFM) to core.

I. Basic Information for CVE-2020-1639

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-1639

III. Intelligence Information for CVE-2020-1639

Same Patch Batch · Juniper Networks · 2020-04-08 · 22 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-1639

Leave a comment