While experiencing a broadcast storm, placing the fxp0 interface into promiscuous mode via the 'monitor traffic interface fxp0' can cause the system to crash and restart (vmcore). This issue only affects Junos OS 15.1 and later releases, and affects both single core and multi-core REs. Releases prior to Junos OS 15.1 are unaffected by this vulnerability. Affected releases are Juniper Networks Junos OS: 15.1 versions prior to 15.1F6-S11, 15.1R4-S9, 15.1R6-S6, 15.1R7; 15.1X49 versions prior to 15.1X49-D140; 15.1X53 versions prior to 15.1X53-D59 on EX2300/EX3400; 15.1X53 versions prior to 15.1X53-D67 on QFX10K; 15.1X53 versions prior to 15.1X53-D233 on QFX5200/QFX5110; 15.1X53 versions prior to 15.1X53-D471, 15.1X53-D490 on NFX; 16.1 versions prior to 16.1R3-S8, 16.1R5-S4, 16.1R6-S1, 16.1R7; 16.2 versions prior to 16.2R1-S6, 16.2R2-S5, 16.2R3; 17.1 versions prior to 17.1R1-S7, 17.1R2-S7, 17.1R3; 17.2 versions prior to 17.2R1-S6, 17.2R2-S4, 17.2R3; 17.2X75 versions prior to 17.2X75-D90, 17.2X75-D110; 17.3 versions prior to 17.3R1-S4, 17.3R2; 17.4 versions prior to 17.4R1-S3, 17.4R2.

Metrics

No CVSS v4.0

No CVSS v3.1

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction Required

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.00153.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Juniper
  • Ex2300
  • Ex3400
  • Junos
  • Nfx250
  • Qfx5110
  • Qfx5200

Configuration 1 [-]

OR cpe:2.3:o:juniper:junos:15.1:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:a1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f2-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f2-s2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f2-s3:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f2-s4:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f3:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f4:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f5:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:f6:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:r4-s9:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:r6-s6:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1:r7:*:*:*:*:*:*

Configuration 2 [-]

OR cpe:2.3:o:juniper:junos:15.1x49:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d10:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d100:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d110:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d120:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d130:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d20:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d30:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d35:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d40:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d45:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d50:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d55:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d60:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d65:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d70:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d75:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d80:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x49:d90:*:*:*:*:*:*

Configuration 3 [-]

AND
OR cpe:2.3:o:juniper:junos:15.1x53:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d25:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d34:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d40:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d45:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d51:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d52:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d55:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d56:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d57:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d58:*:*:*:*:*:*
OR cpe:2.3:h:juniper:ex2300:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:ex3400:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
OR cpe:2.3:o:juniper:junos:15.1x53:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d210:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d230:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d231:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d232:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d25:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d34:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d40:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d45:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d51:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d52:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d55:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d56:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d57:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d58:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d60:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d61:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d62:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d63:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d64:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d65:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d66:*:*:*:*:*:*
OR cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
OR cpe:2.3:o:juniper:junos:15.1x53:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d210:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d230:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d231:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d232:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d25:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d34:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d40:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d45:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d50:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d51:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d52:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d55:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d56:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d57:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d58:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d60:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d61:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d62:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d63:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d64:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d65:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d66:*:*:*:*:*:*
cpe:2.3:h:juniper:nfx250:-:*:*:*:*:*:*:*

Configuration 6 [-]

OR cpe:2.3:o:juniper:junos:16.1:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:16.1:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:16.1:r2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:16.1:r3:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:16.1:r5-s4:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:16.1:r6-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:16.1:r7:*:*:*:*:*:*

Configuration 7 [-]

OR cpe:2.3:o:juniper:junos:16.2:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:16.2:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:16.2:r2-s5:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:16.2:r3:*:*:*:*:*:*

Configuration 8 [-]

OR cpe:2.3:o:juniper:junos:17.1:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.1:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.1:r2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.1:r2-s7:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.1:r3:*:*:*:*:*:*

Configuration 9 [-]

OR cpe:2.3:o:juniper:junos:17.2x75:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.2x75:d110:*:*:*:*:*:*

Configuration 10 [-]

OR cpe:2.3:o:juniper:junos:17.3:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.3:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.3:r2:*:*:*:*:*:*

Configuration 11 [-]

OR cpe:2.3:o:juniper:junos:17.4:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.4:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.4:r2:*:*:*:*:*:*

Configuration 12 [-]

OR cpe:2.3:o:juniper:junos:17.2:*:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.2:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.2:r2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.2:r2-s4:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:17.2:r3:*:*:*:*:*:*

No data.

No data.

Advisories
Source ID Title
EUVD EUVD EUVD-2018-0853 While experiencing a broadcast storm, placing the fxp0 interface into promiscuous mode via the 'monitor traffic interface fxp0' can cause the system to crash and restart (vmcore). This issue only affects Junos OS 15.1 and later releases, and affects both single core and multi-core REs. Releases prior to Junos OS 15.1 are unaffected by this vulnerability. Affected releases are Juniper Networks Junos OS: 15.1 versions prior to 15.1F6-S11, 15.1R4-S9, 15.1R6-S6, 15.1R7; 15.1X49 versions prior to 15.1X49-D140; 15.1X53 versions prior to 15.1X53-D59 on EX2300/EX3400; 15.1X53 versions prior to 15.1X53-D67 on QFX10K; 15.1X53 versions prior to 15.1X53-D233 on QFX5200/QFX5110; 15.1X53 versions prior to 15.1X53-D471, 15.1X53-D490 on NFX; 16.1 versions prior to 16.1R3-S8, 16.1R5-S4, 16.1R6-S1, 16.1R7; 16.2 versions prior to 16.2R1-S6, 16.2R2-S5, 16.2R3; 17.1 versions prior to 17.1R1-S7, 17.1R2-S7, 17.1R3; 17.2 versions prior to 17.2R1-S6, 17.2R2-S4, 17.2R3; 17.2X75 versions prior to 17.2X75-D90, 17.2X75-D110; 17.3 versions prior to 17.3R1-S4, 17.3R2; 17.4 versions prior to 17.4R1-S3, 17.4R2.
Fixes

Solution

The following software releases have been updated to resolve this specific issue: 15.1F6-S11*, 15.1R4-S9, 15.1R6-S6, 15.1R7, 15.1X49-D140, 15.1X53-D233, 15.1X53-D471, 15.1X53-D490, 15.1X53-D59, 15.1X53-D67, 16.1R3-S8, 16.1R5-S4, 16.1R6-S1, 16.1R7, 16.2R1-S6, 16.2R2-S5, 16.2R3, 17.1R1-S7, 17.1R2-S7, 17.1R3, 17.2R1-S6, 17.2R2-S4, 17.2R3, 17.2X75-D110, 17.2X75-D90, 17.3R1-S4, 17.3R2, 17.4R1-S3, 17.4R2, 18.1R1, 18.1X75-D10, and all subsequent releases. *Future availability

Workaround

Avoid executing the 'monitor traffic interface fxp0' command while attempting to troubleshoot broadcast storms.

References
Link Providers
http://www.securitytracker.com/id/1041319 cve-icon cve-icon
https://kb.juniper.net/JSA10863 cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: juniper

Published:

Updated: 2024-09-16T19:51:27.754Z

Reserved: 2017-11-16T00:00:00

Link: CVE-2018-0029

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-07-11T18:29:00.370

Modified: 2024-11-21T03:37:23.553

Link: CVE-2018-0029

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.