An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Connectivity Fault Management(CFM) module of Juniper Networks Junos OS on MX Series(except MPC10, MPC11 and LC9600) allows an adjacent attacker on the local broadcast domain to cause a Denial of Service(DoS). Upon receiving a malformed CFM packet, the MPC crashes. Continued receipt of these packets causes a sustained denial of service. This issue can only be triggered when CFM hasn't been configured. This issue affects: Juniper Networks Junos OS All versions before 19.1R3-S10 on MX Series; 19.2 versions before 19.2R3-S7 on MX Series; 19.3 versions before 19.3R3-S8 on MX Series; 19.4 versions before 19.4R3-S12 on MX Series; 20.1 version 20.1R1 and later versions on MX Series; 20.2 versions before 20.2R3-S7 on MX Series; 20.3 version 20.3R1 and later versions on MX Series; 20.4 versions before 20.4R3-S7 on MX Series; 21.1 versions before 21.1R3-S5 on MX Series; 21.2 versions before 21.2R3-S4 on MX Series; 21.3 versions before 21.3R3-S4 on MX Series; 21.4 versions before 21.4R3-S3 on MX Series; 22.1 versions before 22.1R3-S2 on MX Series; 22.2 versions before 22.2R3 on MX Series; 22.3 versions before 22.3R2, 22.3R3 on MX Series; 22.4 versions before 22.4R2 on MX Series.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
juniper junos 19.1 |
||
juniper junos 19.2 |
||
juniper junos 19.3 |
||
juniper junos 19.4 |
||
juniper junos 20.1 |
||
juniper junos 20.2 |
||
juniper junos 20.3 |
||
juniper junos 20.4 |
||
juniper junos 21.1 |
||
juniper junos 21.2 |
||
juniper junos 21.3 |
||
juniper junos 21.4 |
||
juniper junos 22.1 |
||
juniper junos 22.2 |
||
juniper junos 22.3 |
||
juniper junos 22.4 |
Vulmon