Vulnerabilities > CVE-2020-1604 - Unspecified vulnerability in Juniper Junos

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

juniper

nessus

NVD

Published: 2020-01-15

Updated: 2021-11-18

Summary

On EX4300, EX4600, QFX3500, and QFX5100 Series, a vulnerability in the IP firewall filter component may cause the firewall filter evaluation of certain packets to fail. This issue only affects firewall filter evaluation of certain packets destined to the device Routing Engine (RE). This issue does not affect the Layer 2 firewall filter evaluation nor does it affect the Layer 3 firewall filter evaluation destined to connected hosts. This issue may occur when evaluating both IPv4 or IPv6 packets. This issue affects Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D12 on QFX5100 Series and EX4600 Series; 14.1X53 versions prior to 14.1X53-D52 on QFX3500 Series; 14.1X53 versions prior to 14.1X53-D48 on EX4300 Series; 15.1 versions prior to 15.1R7-S3 on EX4300 Series; 16.1 versions prior to 16.1R7 on EX4300 Series; 17.1 versions prior to 17.1R3 on EX4300 Series; 17.2 versions prior to 17.2R3 on EX4300 Series; 17.3 versions prior to 17.3R2-S5, 17.3R3 on EX4300 Series; 17.4 versions prior to 17.4R2 on EX4300 Series; 18.1 versions prior to 18.1R3 on EX4300 Series; 18.2 versions prior to 18.2R2 on EX4300 Series.

Vulnerable Configurations

Part	Description	Count
OS	Juniper Juniper Junos 14.1X53 Juniper Junos 15.1 Juniper Junos 16.1 Juniper Junos 17.1 Juniper Junos 17.2 Juniper Junos 17.3 Juniper Junos 17.4 Juniper Junos 18.1 Juniper Junos 18.2	85
Hardware	Juniper Juniper Ex4600 - Juniper Qfx5100 - Juniper Qfx5110 - Juniper Qfx5120 - Juniper Qfx3500 - Juniper Ex4300 -	6

Nessus

NASL family	Junos Local Security Checks
NASL id	JUNIPER_JSA10983.NASL
description	According to its self reported version, Junos OS is affected by a vulnerability in its IP firewall filter component. A remote, unauthenticated attacker could exploit this, by sending specially crafted IPv4 or IPV6 packets to an affected host, to bypass firewall restrictions which have been put in place by an administrator. Note that Nessus has not tested for this issue but has instead relied only on the application
last seen	2020-06-01
modified	2020-06-02
plugin id	133725
published	2020-02-17
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/133725
title	Juniper Stateless IP Firewall Bypass Vulnerability (JSA10983)

NASL family	Junos Local Security Checks
NASL id	JUNIPER_JSA10979.NASL
description	The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the JSA10979 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application
last seen	2020-05-06
modified	2020-02-25
plugin id	133965
published	2020-02-25
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/133965
title	Juniper JSA10979

References

https://kb.juniper.net/JSA10983