On EX2300, EX3400, EX4600, QFX3K and QFX5K series, firewall filter configuration cannot perform packet matching on any IPv6 extension headers. This issue may allow IPv6 packets that should have been blocked to be forwarded. IPv4 packet filtering is unaffected by this vulnerability. Affected releases are Juniper Networks Junos OS on EX and QFX series;: 14.1X53 versions prior to 14.1X53-D47; 15.1 versions prior to 15.1R7; 15.1X53 versions prior to 15.1X53-D234 on QFX5200/QFX5110 series; 15.1X53 versions prior to 15.1X53-D591 on EX2300/EX3400 series; 16.1 versions prior to 16.1R7; 17.1 versions prior to 17.1R2-S10, 17.1R3; 17.2 versions prior to 17.2R3; 17.3 versions prior to 17.3R3; 17.4 versions prior to 17.4R2; 18.1 versions prior to 18.1R2.
References
| Link | Resource |
|---|---|
| http://www.securityfocus.com/bid/106665 | Third Party Advisory VDB Entry |
| https://kb.juniper.net/JSA10905 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
History
09 Nov 2021, 21:04
| Type | Values Removed | Values Added |
|---|---|---|
| References | (BID) http://www.securityfocus.com/bid/106665 - Third Party Advisory, VDB Entry | |
| CPE | cpe:2.3:o:juniper:junos:17.3:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.4:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:*:*:*:*:*:*:* |
cpe:2.3:o:juniper:junos:17.3:r1-s4:*:*:*:*:*:* cpe:2.3:o:juniper:junos:18.1:r1:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.3:r2-s3:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.3:r2-s4:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2-s5:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.3:-:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r1-s7:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2-s3:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.4:r1-s1:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.4:-:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.3:r2-s5:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.4:r1-s2:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.3:r2-s2:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2-s4:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2-s6:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2-s2:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2-s9:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2-s1:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.4:r1-s6:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:-:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2-s7:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.4:r1-s7:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.3:r2-s1:*:*:*:*:*:* cpe:2.3:o:juniper:junos:18.1:r:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.4:r1-s5:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.1:r2-s8:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.3:r1-s1:*:*:*:*:*:* cpe:2.3:o:juniper:junos:18.1:-:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.4:r1-s4:*:*:*:*:*:* cpe:2.3:o:juniper:junos:17.4:r1-s3:*:*:*:*:*:* |
Information
Published : 2019-01-15 21:29
Updated : 2024-02-04 20:03
NVD link : CVE-2019-0005
Mitre link : CVE-2019-0005
CVE.ORG link : CVE-2019-0005
JSON object : View
Products Affected
juniper
- qfx5120
- ex3400
- qfx3500
- qfx5110
- ex4600
- ex2300
- junos
- qfx5200
- qfx5100
- qfx5210
- gfx3600
- qfx3600
- ex2300-c
- ex4650
CWE
CWE-770
Allocation of Resources Without Limits or Throttling