CVE-2021-31376

An Improper Input Validation vulnerability in Packet Forwarding Engine manager (FXPC) process of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) by sending specific DHCPv6 packets to the device and crashing the FXPC service. Continued receipt and processing of this specific packet will create a sustained Denial of Service (DoS) condition. This issue affects only the following platforms in ACX Series: ACX500, ACX1000, ACX1100, ACX2100, ACX2200, ACX4000, ACX5048, ACX5096 devices. Other ACX platforms are not affected from this issue. This issue affects Juniper Networks Junos OS on ACX500, ACX1000, ACX1100, ACX2100, ACX2200, ACX4000, ACX5048, ACX5096: 18.4 version 18.4R3-S7 and later versions prior to 18.4R3-S8. This issue does not affect: Juniper Networks Junos OS 18.4 versions prior to 18.4R3-S7 on ACX500, ACX1000, ACX1100, ACX2100, ACX2200, ACX4000, ACX5048, ACX5096.
References
Link Resource
https://kb.juniper.net/JSA11241 Vendor Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:juniper:junos:18.4:r3-s7:*:*:*:*:*:*
OR cpe:2.3:h:juniper:acx1000:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:acx1100:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:acx2100:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:acx2200:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:acx4000:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:acx500:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:acx5048:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:acx5096:-:*:*:*:*:*:*:*

Information

Published : 2021-10-19 12:15

Updated : 2021-10-25 09:20


NVD link : CVE-2021-31376

Mitre link : CVE-2021-31376


JSON object : View

CWE
CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

juniper

  • acx1100
  • acx2200
  • junos
  • acx2100
  • acx5048
  • acx4000
  • acx5096
  • acx1000
  • acx500