Vulnerabilities > CVE-2021-0225 - Improper Check for Unusual or Exceptional Conditions vulnerability in Juniper Junos OS Evolved

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

juniper

CWE-754

NVD

Published: 2021-04-22

Updated: 2021-04-27

Summary

An Improper Check for Unusual or Exceptional Conditions in Juniper Networks Junos OS Evolved may cause the stateless firewall filter configuration which uses the action 'policer' in certain combinations with other options to not take effect. An administrator can use the following CLI command to see the failures with filter configuration: user@device> show log kfirewall-agent.log | match ERROR Jul 23 14:16:03 ERROR: filter not supported This issue affects Juniper Networks Junos OS Evolved: Versions 19.1R1-EVO and above prior to 20.3R1-S2-EVO, 20.3R2-EVO. This issue does not affect Juniper Networks Junos OS.

Vulnerable Configurations

Part	Description	Count
OS	Juniper Juniper Junos OS Evolved 19.1 Juniper Junos OS Evolved 19.2 Juniper Junos OS Evolved 19.3 Juniper Junos OS Evolved 20.1 Juniper Junos OS Evolved 20.2 Juniper Junos OS Evolved 20.3	12

Common Weakness Enumeration (CWE)

CWE-754 - Improper Check for Unusual or Exceptional Conditions

References

https://kb.juniper.net/JSA11120