漏洞标题
乔诺斯操作系统进阶:ACX 7000系列:在特定流量的VPLS场景下,evo-pfemand崩溃
漏洞描述信息
在Juniper Networks Junos OS Evolved的ACX 7000系列Packet Forwarding Engine(PFE)中存在一个对不寻常或特殊情况的不当检查的漏洞,允许未经授权且相邻的攻击者导致服务中断(DoS)。
当设备在VPLS实例中配置了第3层或IRB接口,并接收到特定流量时,evo-pfemand进程会崩溃,导致相关的FPC服务中断,直到系统手动恢复。
此问题仅影响Junos OS Evolved 22.4R2-S1和22.4R2-S2发布版,且在22.4R3版本中得到了修复。其他版本不受影响。
CVSS信息
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
对因果或异常条件的不恰当检查
漏洞标题
Junos OS Evolved: ACX 7000 Series: When specific traffic is received in a VPLS scenario evo-pfemand crashes
漏洞描述信息
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (DoS).
When a device has a Layer 3 or an IRB interface configured in a VPLS instance and specific traffic is received, the evo-pfemand processes crashes which causes a service outage for the respective FPC until the system is recovered manually.
This issue only affects Junos OS Evolved 22.4R2-S1 and 22.4R2-S2 releases and is fixed in 22.4R3. No other releases are affected.
CVSS信息
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
对因果或异常条件的不恰当检查
漏洞标题
Juniper Networks Junos OS Evolved 安全漏洞
漏洞描述信息
Juniper Networks Junos OS Evolved是美国瞻博网络(Juniper Networks)公司的Junos OS 的升级版系统。 Juniper Networks Junos OS Evolved存在安全漏洞,该漏洞源于存在对异常或异常情况检查不当的漏洞,允许未经身份验证的相邻攻击者造成拒绝服务(DoS)。
CVSS信息
N/A
漏洞类别
其他