CVE-2020-1613 - Vulnerability Details

A vulnerability in the BGP FlowSpec implementation may cause a Juniper Networks Junos OS device to terminate an established BGP session upon receiving a specific BGP FlowSpec advertisement. The BGP NOTIFICATION message that terminates an established BGP session is sent toward the peer device that originally sent the specific BGP FlowSpec advertisement. This specific BGP FlowSpec advertisement received from a BGP peer might get propagated from a Junos OS device running the fixed release to another device that is vulnerable causing BGP session termination downstream. This issue affects IPv4 and IPv6 BGP FlowSpec deployment. This issue affects Juniper Networks Junos OS: 12.3; 12.3X48 on SRX Series; 14.1X53 on EX and QFX Series; 15.1 versions prior to 15.1R7-S5; 15.1F versions prior to 15.1F6-S13; 15.1X49 versions prior to 15.1X49-D180 on SRX Series; 15.1X53 versions prior to 15.1X53-D238 on QFX5200/QFX5110; 15.1X53 versions prior to 15.1X53-D497 on NFX Series; 15.1X53 versions prior to 15.1X53-D592 on EX2300/EX3400; 16.1 versions prior to 16.1R7-S7; 17.1 versions prior to 17.1R2-S12, 17.1R3; 17.2 versions prior to 17.2R2-S7, 17.2R3; 17.2X75 versions prior to 17.2X75-D102, 17.2X75-D110, 17.2X75-D44; 17.3 versions prior to 17.3R2-S5, 17.3R3-S5; 17.4 versions prior to 17.4R1-S8, 17.4R2; 18.1 versions prior to 18.1R2-S4, 18.1R3; 18.2X75 versions prior to 18.2X75-D20.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00453.

Key SSVC decision points have not yet been added.

Vendors	Products
Juniper Subscribe	Ex2300 Subscribe Ex2300-c Subscribe Ex3400 Subscribe Ex4300 Subscribe Ex4600 Subscribe Ex4650 Subscribe Ex9200 Subscribe Ex9250 Subscribe Junos Subscribe Nfx150 Subscribe Nfx250 Subscribe Qfx10002 Subscribe Qfx10008 Subscribe Qfx10016 Subscribe Qfx3000-g Subscribe Qfx3000-m Subscribe Qfx3008-i Subscribe Qfx3100 Subscribe Qfx3500 Subscribe Qfx3600 Subscribe Qfx3600-i Subscribe Qfx5100 Subscribe Qfx5110 Subscribe Qfx5200 Subscribe Qfx5210 Subscribe Srx100 Subscribe Srx110 Subscribe Srx1400 Subscribe Srx1500 Subscribe Srx210 Subscribe Srx220 Subscribe Srx240 Subscribe Srx300 Subscribe Srx320 Subscribe Srx340 Subscribe Srx3400 Subscribe Srx345 Subscribe Srx3600 Subscribe Srx4100 Subscribe Srx4200 Subscribe Srx4600 Subscribe Srx5400 Subscribe Srx550 Subscribe Srx5600 Subscribe Srx5800 Subscribe Srx650 Subscribe

Configuration 1 [-]

OR	cpe:2.3:o:juniper:junos:12.3:-::::::
	cpe:2.3:o:juniper:junos:15.1:-::::::
	cpe:2.3:o:juniper:junos:15.1:f::::::
	cpe:2.3:o:juniper:junos:15.1:f1::::::
	cpe:2.3:o:juniper:junos:15.1:f2::::::
	cpe:2.3:o:juniper:junos:15.1:f2-s1::::::
	cpe:2.3:o:juniper:junos:15.1:f2-s2::::::
	cpe:2.3:o:juniper:junos:15.1:f2-s3::::::
	cpe:2.3:o:juniper:junos:15.1:f2-s4::::::
	cpe:2.3:o:juniper:junos:15.1:f3::::::
	cpe:2.3:o:juniper:junos:15.1:f4::::::
	cpe:2.3:o:juniper:junos:15.1:f5::::::
	cpe:2.3:o:juniper:junos:15.1:f5-s7::::::
	cpe:2.3:o:juniper:junos:15.1:f6::::::
	cpe:2.3:o:juniper:junos:15.1:f6-s1::::::
	cpe:2.3:o:juniper:junos:15.1:f6-s12::::::
	cpe:2.3:o:juniper:junos:15.1:f6-s2::::::
	cpe:2.3:o:juniper:junos:15.1:f6-s3::::::
	cpe:2.3:o:juniper:junos:15.1:f6-s4::::::
	cpe:2.3:o:juniper:junos:15.1:f6-s7::::::
	cpe:2.3:o:juniper:junos:15.1:f7::::::
	cpe:2.3:o:juniper:junos:15.1:r1::::::
	cpe:2.3:o:juniper:junos:15.1:r2::::::
	cpe:2.3:o:juniper:junos:15.1:r3::::::
	cpe:2.3:o:juniper:junos:15.1:r4::::::
	cpe:2.3:o:juniper:junos:15.1:r4-s7::::::
	cpe:2.3:o:juniper:junos:15.1:r4-s8::::::
	cpe:2.3:o:juniper:junos:15.1:r4-s9::::::
	cpe:2.3:o:juniper:junos:15.1:r5::::::
	cpe:2.3:o:juniper:junos:15.1:r5-s1::::::
	cpe:2.3:o:juniper:junos:15.1:r5-s5::::::
	cpe:2.3:o:juniper:junos:15.1:r5-s6::::::
	cpe:2.3:o:juniper:junos:15.1:r6::::::
	cpe:2.3:o:juniper:junos:15.1:r6-s1::::::
	cpe:2.3:o:juniper:junos:15.1:r6-s2::::::
	cpe:2.3:o:juniper:junos:15.1:r6-s6::::::
	cpe:2.3:o:juniper:junos:15.1:r7::::::
	cpe:2.3:o:juniper:junos:15.1:r7-s1::::::
	cpe:2.3:o:juniper:junos:15.1:r7-s2::::::
	cpe:2.3:o:juniper:junos:15.1:r7-s3::::::
	cpe:2.3:o:juniper:junos:15.1:r7-s4::::::
	cpe:2.3:o:juniper:junos:16.1:-::::::
	cpe:2.3:o:juniper:junos:16.1:r1::::::
	cpe:2.3:o:juniper:junos:16.1:r2::::::
	cpe:2.3:o:juniper:junos:16.1:r3::::::
	cpe:2.3:o:juniper:junos:16.1:r3-s10::::::
	cpe:2.3:o:juniper:junos:16.1:r3-s11::::::
	cpe:2.3:o:juniper:junos:16.1:r4::::::
	cpe:2.3:o:juniper:junos:16.1:r4-s12::::::
	cpe:2.3:o:juniper:junos:16.1:r4-s2::::::
	cpe:2.3:o:juniper:junos:16.1:r4-s3::::::
	cpe:2.3:o:juniper:junos:16.1:r4-s4::::::
	cpe:2.3:o:juniper:junos:16.1:r4-s6::::::
	cpe:2.3:o:juniper:junos:16.1:r5::::::
	cpe:2.3:o:juniper:junos:16.1:r5-s4::::::
	cpe:2.3:o:juniper:junos:16.1:r6-s1::::::
	cpe:2.3:o:juniper:junos:16.1:r6-s6::::::
	cpe:2.3:o:juniper:junos:16.1:r7::::::
	cpe:2.3:o:juniper:junos:16.1:r7-s2::::::
	cpe:2.3:o:juniper:junos:16.1:r7-s3::::::
	cpe:2.3:o:juniper:junos:16.1:r7-s4::::::
	cpe:2.3:o:juniper:junos:16.1:r7-s5::::::
	cpe:2.3:o:juniper:junos:17.1:-::::::
	cpe:2.3:o:juniper:junos:17.1:r1::::::
cpe:2.3:o:juniper:junos:17.1:r2::::::
cpe:2.3:o:juniper:junos:17.1:r2-s1::::::
cpe:2.3:o:juniper:junos:17.1:r2-s10::::::
cpe:2.3:o:juniper:junos:17.1:r2-s11::::::
cpe:2.3:o:juniper:junos:17.1:r2-s2::::::
cpe:2.3:o:juniper:junos:17.1:r2-s3::::::
cpe:2.3:o:juniper:junos:17.1:r2-s4::::::
cpe:2.3:o:juniper:junos:17.1:r2-s5::::::
cpe:2.3:o:juniper:junos:17.1:r2-s6::::::
cpe:2.3:o:juniper:junos:17.1:r2-s7::::::
cpe:2.3:o:juniper:junos:17.1:r2-s8::::::
cpe:2.3:o:juniper:junos:17.1:r2-s9::::::
cpe:2.3:o:juniper:junos:17.1:r3::::::
cpe:2.3:o:juniper:junos:17.2:-::::::
cpe:2.3:o:juniper:junos:17.2:r1::::::
cpe:2.3:o:juniper:junos:17.2:r1-s1::::::
cpe:2.3:o:juniper:junos:17.2:r1-s2::::::
cpe:2.3:o:juniper:junos:17.2:r1-s3::::::
cpe:2.3:o:juniper:junos:17.2:r1-s4::::::
cpe:2.3:o:juniper:junos:17.2:r1-s5::::::
cpe:2.3:o:juniper:junos:17.2:r1-s7::::::
cpe:2.3:o:juniper:junos:17.2:r1-s8::::::
cpe:2.3:o:juniper:junos:17.2:r2::::::
cpe:2.3:o:juniper:junos:17.2:r2-s10::::::
cpe:2.3:o:juniper:junos:17.2:r2-s11::::::
cpe:2.3:o:juniper:junos:17.2:r2-s6::::::
cpe:2.3:o:juniper:junos:17.2:r2-s7::::::
cpe:2.3:o:juniper:junos:17.2:r2-s9::::::
cpe:2.3:o:juniper:junos:17.2x75:-::::::
cpe:2.3:o:juniper:junos:17.2x75:d50::::::
cpe:2.3:o:juniper:junos:17.2x75:d70::::::
cpe:2.3:o:juniper:junos:17.2x75:d92::::::
cpe:2.3:o:juniper:junos:17.3:-::::::
cpe:2.3:o:juniper:junos:17.3:r1-s1::::::
cpe:2.3:o:juniper:junos:17.3:r2::::::
cpe:2.3:o:juniper:junos:17.3:r2-s1::::::
cpe:2.3:o:juniper:junos:17.3:r2-s2::::::
cpe:2.3:o:juniper:junos:17.3:r2-s3::::::
cpe:2.3:o:juniper:junos:17.3:r2-s4::::::
cpe:2.3:o:juniper:junos:17.3:r3:-:::::*
cpe:2.3:o:juniper:junos:17.3:r3-s1::::::
cpe:2.3:o:juniper:junos:17.3:r3-s2::::::
cpe:2.3:o:juniper:junos:17.3:r3-s3::::::
cpe:2.3:o:juniper:junos:17.3:r3-s4::::::
cpe:2.3:o:juniper:junos:17.4:-::::::
cpe:2.3:o:juniper:junos:17.4:r1::::::
cpe:2.3:o:juniper:junos:17.4:r1-s1::::::
cpe:2.3:o:juniper:junos:17.4:r1-s2::::::
cpe:2.3:o:juniper:junos:17.4:r1-s4::::::
cpe:2.3:o:juniper:junos:17.4:r1-s5::::::
cpe:2.3:o:juniper:junos:17.4:r1-s6::::::
cpe:2.3:o:juniper:junos:17.4:r1-s7::::::
cpe:2.3:o:juniper:junos:18.1:-::::::
cpe:2.3:o:juniper:junos:18.1:r2::::::
cpe:2.3:o:juniper:junos:18.1:r2-s1::::::
cpe:2.3:o:juniper:junos:18.1:r2-s2::::::
cpe:2.3:o:juniper:junos:18.2x75:-::::::
cpe:2.3:o:juniper:junos:18.2x75-d10:::::::*

Configuration 2 [-]

AND

OR	cpe:2.3:o:juniper:junos:12.3x48:d10::::::
	cpe:2.3:o:juniper:junos:15.1x49:-::::::
	cpe:2.3:o:juniper:junos:15.1x49:d10::::::
	cpe:2.3:o:juniper:junos:15.1x49:d100::::::
	cpe:2.3:o:juniper:junos:15.1x49:d110::::::
	cpe:2.3:o:juniper:junos:15.1x49:d120::::::
	cpe:2.3:o:juniper:junos:15.1x49:d130::::::
	cpe:2.3:o:juniper:junos:15.1x49:d140::::::
	cpe:2.3:o:juniper:junos:15.1x49:d15::::::
	cpe:2.3:o:juniper:junos:15.1x49:d150::::::
	cpe:2.3:o:juniper:junos:15.1x49:d160::::::
	cpe:2.3:o:juniper:junos:15.1x49:d170::::::
	cpe:2.3:o:juniper:junos:15.1x49:d20::::::
	cpe:2.3:o:juniper:junos:15.1x49:d25::::::
	cpe:2.3:o:juniper:junos:15.1x49:d30::::::
	cpe:2.3:o:juniper:junos:15.1x49:d35::::::
	cpe:2.3:o:juniper:junos:15.1x49:d40::::::
	cpe:2.3:o:juniper:junos:15.1x49:d45::::::
	cpe:2.3:o:juniper:junos:15.1x49:d50::::::
	cpe:2.3:o:juniper:junos:15.1x49:d55::::::
	cpe:2.3:o:juniper:junos:15.1x49:d60::::::
	cpe:2.3:o:juniper:junos:15.1x49:d65::::::
	cpe:2.3:o:juniper:junos:15.1x49:d70::::::
	cpe:2.3:o:juniper:junos:15.1x49:d75::::::
	cpe:2.3:o:juniper:junos:15.1x49:d80::::::
	cpe:2.3:o:juniper:junos:15.1x49:d90::::::

OR	cpe:2.3:h:juniper:srx100:-:::::::*
	cpe:2.3:h:juniper:srx110:-:::::::*
	cpe:2.3:h:juniper:srx1400:-:::::::*
	cpe:2.3:h:juniper:srx1500:-:::::::*
	cpe:2.3:h:juniper:srx210:-:::::::*
	cpe:2.3:h:juniper:srx220:-:::::::*
	cpe:2.3:h:juniper:srx240:-:::::::*
	cpe:2.3:h:juniper:srx300:-:::::::*
	cpe:2.3:h:juniper:srx320:-:::::::*
	cpe:2.3:h:juniper:srx340:-:::::::*
	cpe:2.3:h:juniper:srx3400:-:::::::*
	cpe:2.3:h:juniper:srx345:-:::::::*
	cpe:2.3:h:juniper:srx3600:-:::::::*
	cpe:2.3:h:juniper:srx4100:-:::::::*
	cpe:2.3:h:juniper:srx4200:-:::::::*
	cpe:2.3:h:juniper:srx4600:-:::::::*
	cpe:2.3:h:juniper:srx5400:-:::::::*
	cpe:2.3:h:juniper:srx550:-:::::::*
	cpe:2.3:h:juniper:srx5600:-:::::::*
	cpe:2.3:h:juniper:srx5800:-:::::::*
	cpe:2.3:h:juniper:srx650:-:::::::*

Configuration 3 [-]

AND

cpe:2.3:o:juniper:junos:14.1x53:-:*:*:*:*:*:*

OR	cpe:2.3:h:juniper:ex2300:-:::::::*
	cpe:2.3:h:juniper:ex2300-c:-:::::::*
	cpe:2.3:h:juniper:ex3400:-:::::::*
	cpe:2.3:h:juniper:ex4300:-:::::::*
	cpe:2.3:h:juniper:ex4600:-:::::::*
	cpe:2.3:h:juniper:ex4650:-:::::::*
	cpe:2.3:h:juniper:ex9200:-:::::::*
	cpe:2.3:h:juniper:ex9250:-:::::::*
	cpe:2.3:h:juniper:qfx10002:-:::::::*
	cpe:2.3:h:juniper:qfx10008:-:::::::*
	cpe:2.3:h:juniper:qfx10016:-:::::::*
	cpe:2.3:h:juniper:qfx3000-g:-:::::::*
	cpe:2.3:h:juniper:qfx3000-m:-:::::::*
	cpe:2.3:h:juniper:qfx3008-i:-:::::::*
	cpe:2.3:h:juniper:qfx3100:-:::::::*
	cpe:2.3:h:juniper:qfx3500:-:::::::*
	cpe:2.3:h:juniper:qfx3600:-:::::::*
	cpe:2.3:h:juniper:qfx3600-i:-:::::::*
	cpe:2.3:h:juniper:qfx5100:-:::::::*
	cpe:2.3:h:juniper:qfx5110:-:::::::*
	cpe:2.3:h:juniper:qfx5200:-:::::::*
	cpe:2.3:h:juniper:qfx5210:-:::::::*

Configuration 4 [-]

AND

OR	cpe:2.3:o:juniper:junos:15.1x53:-::::::
	cpe:2.3:o:juniper:junos:15.1x53:d10::::::
	cpe:2.3:o:juniper:junos:15.1x53:d20::::::
	cpe:2.3:o:juniper:junos:15.1x53:d21::::::
	cpe:2.3:o:juniper:junos:15.1x53:d210::::::
	cpe:2.3:o:juniper:junos:15.1x53:d230::::::
	cpe:2.3:o:juniper:junos:15.1x53:d231::::::
	cpe:2.3:o:juniper:junos:15.1x53:d232::::::
	cpe:2.3:o:juniper:junos:15.1x53:d233::::::
	cpe:2.3:o:juniper:junos:15.1x53:d234::::::
	cpe:2.3:o:juniper:junos:15.1x53:d235::::::
	cpe:2.3:o:juniper:junos:15.1x53:d236::::::
	cpe:2.3:o:juniper:junos:15.1x53:d237::::::
	cpe:2.3:o:juniper:junos:15.1x53:d25::::::
	cpe:2.3:o:juniper:junos:15.1x53:d30::::::
	cpe:2.3:o:juniper:junos:15.1x53:d31::::::
	cpe:2.3:o:juniper:junos:15.1x53:d32::::::
	cpe:2.3:o:juniper:junos:15.1x53:d33::::::
	cpe:2.3:o:juniper:junos:15.1x53:d34::::::
	cpe:2.3:o:juniper:junos:15.1x53:d40::::::
	cpe:2.3:o:juniper:junos:15.1x53:d45::::::
	cpe:2.3:o:juniper:junos:15.1x53:d47::::::
	cpe:2.3:o:juniper:junos:15.1x53:d48::::::
	cpe:2.3:o:juniper:junos:15.1x53:d50::::::
	cpe:2.3:o:juniper:junos:15.1x53:d51::::::
	cpe:2.3:o:juniper:junos:15.1x53:d52::::::
	cpe:2.3:o:juniper:junos:15.1x53:d55::::::
	cpe:2.3:o:juniper:junos:15.1x53:d56::::::
	cpe:2.3:o:juniper:junos:15.1x53:d57::::::
	cpe:2.3:o:juniper:junos:15.1x53:d58::::::
	cpe:2.3:o:juniper:junos:15.1x53:d59::::::
	cpe:2.3:o:juniper:junos:15.1x53:d60::::::
	cpe:2.3:o:juniper:junos:15.1x53:d61::::::
	cpe:2.3:o:juniper:junos:15.1x53:d62::::::
	cpe:2.3:o:juniper:junos:15.1x53:d63::::::
	cpe:2.3:o:juniper:junos:15.1x53:d64::::::
	cpe:2.3:o:juniper:junos:15.1x53:d65::::::
	cpe:2.3:o:juniper:junos:15.1x53:d66::::::
	cpe:2.3:o:juniper:junos:15.1x53:d67::::::
	cpe:2.3:o:juniper:junos:15.1x53:d68::::::
	cpe:2.3:o:juniper:junos:15.1x53:d69::::::
	cpe:2.3:o:juniper:junos:15.1x53:d70::::::

OR	cpe:2.3:h:juniper:qfx5110:-:::::::*
	cpe:2.3:h:juniper:qfx5200:-:::::::*

Configuration 5 [-]

AND

OR	cpe:2.3:o:juniper:junos:15.1x53:-::::::
	cpe:2.3:o:juniper:junos:15.1x53:d10::::::
	cpe:2.3:o:juniper:junos:15.1x53:d20::::::
	cpe:2.3:o:juniper:junos:15.1x53:d21::::::
	cpe:2.3:o:juniper:junos:15.1x53:d210::::::
	cpe:2.3:o:juniper:junos:15.1x53:d230::::::
	cpe:2.3:o:juniper:junos:15.1x53:d231::::::
	cpe:2.3:o:juniper:junos:15.1x53:d232::::::
	cpe:2.3:o:juniper:junos:15.1x53:d233::::::
	cpe:2.3:o:juniper:junos:15.1x53:d234::::::
	cpe:2.3:o:juniper:junos:15.1x53:d235::::::
	cpe:2.3:o:juniper:junos:15.1x53:d236::::::
	cpe:2.3:o:juniper:junos:15.1x53:d237::::::
	cpe:2.3:o:juniper:junos:15.1x53:d25::::::
	cpe:2.3:o:juniper:junos:15.1x53:d30::::::
	cpe:2.3:o:juniper:junos:15.1x53:d31::::::
	cpe:2.3:o:juniper:junos:15.1x53:d32::::::
	cpe:2.3:o:juniper:junos:15.1x53:d33::::::
	cpe:2.3:o:juniper:junos:15.1x53:d34::::::
	cpe:2.3:o:juniper:junos:15.1x53:d40::::::
	cpe:2.3:o:juniper:junos:15.1x53:d45::::::
	cpe:2.3:o:juniper:junos:15.1x53:d47::::::
	cpe:2.3:o:juniper:junos:15.1x53:d470::::::
	cpe:2.3:o:juniper:junos:15.1x53:d48::::::
	cpe:2.3:o:juniper:junos:15.1x53:d495::::::
	cpe:2.3:o:juniper:junos:15.1x53:d50::::::
	cpe:2.3:o:juniper:junos:15.1x53:d51::::::
	cpe:2.3:o:juniper:junos:15.1x53:d52::::::
	cpe:2.3:o:juniper:junos:15.1x53:d55::::::
	cpe:2.3:o:juniper:junos:15.1x53:d56::::::
	cpe:2.3:o:juniper:junos:15.1x53:d57::::::
	cpe:2.3:o:juniper:junos:15.1x53:d58::::::
	cpe:2.3:o:juniper:junos:15.1x53:d59::::::
	cpe:2.3:o:juniper:junos:15.1x53:d60::::::
	cpe:2.3:o:juniper:junos:15.1x53:d61::::::
	cpe:2.3:o:juniper:junos:15.1x53:d62::::::
	cpe:2.3:o:juniper:junos:15.1x53:d63::::::
	cpe:2.3:o:juniper:junos:15.1x53:d64::::::
	cpe:2.3:o:juniper:junos:15.1x53:d65::::::
	cpe:2.3:o:juniper:junos:15.1x53:d66::::::
	cpe:2.3:o:juniper:junos:15.1x53:d67::::::
	cpe:2.3:o:juniper:junos:15.1x53:d68::::::
	cpe:2.3:o:juniper:junos:15.1x53:d69::::::
	cpe:2.3:o:juniper:junos:15.1x53:d70::::::
	cpe:2.3:o:juniper:junos:15.1x53-d50:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d51:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d52:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d55:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d57:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d58:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d59:::::::*

OR	cpe:2.3:h:juniper:nfx150:-:::::::*
	cpe:2.3:h:juniper:nfx250:-:::::::*

Configuration 6 [-]

AND

OR	cpe:2.3:o:juniper:junos:15.1x53:-::::::
	cpe:2.3:o:juniper:junos:15.1x53:d10::::::
	cpe:2.3:o:juniper:junos:15.1x53:d20::::::
	cpe:2.3:o:juniper:junos:15.1x53:d21::::::
	cpe:2.3:o:juniper:junos:15.1x53:d210::::::
	cpe:2.3:o:juniper:junos:15.1x53:d230::::::
	cpe:2.3:o:juniper:junos:15.1x53:d231::::::
	cpe:2.3:o:juniper:junos:15.1x53:d232::::::
	cpe:2.3:o:juniper:junos:15.1x53:d233::::::
	cpe:2.3:o:juniper:junos:15.1x53:d234::::::
	cpe:2.3:o:juniper:junos:15.1x53:d235::::::
	cpe:2.3:o:juniper:junos:15.1x53:d236::::::
	cpe:2.3:o:juniper:junos:15.1x53:d237::::::
	cpe:2.3:o:juniper:junos:15.1x53:d25::::::
	cpe:2.3:o:juniper:junos:15.1x53:d30::::::
	cpe:2.3:o:juniper:junos:15.1x53:d31::::::
	cpe:2.3:o:juniper:junos:15.1x53:d32::::::
	cpe:2.3:o:juniper:junos:15.1x53:d33::::::
	cpe:2.3:o:juniper:junos:15.1x53:d34::::::
	cpe:2.3:o:juniper:junos:15.1x53:d40::::::
	cpe:2.3:o:juniper:junos:15.1x53:d45::::::
	cpe:2.3:o:juniper:junos:15.1x53:d47::::::
	cpe:2.3:o:juniper:junos:15.1x53:d470::::::
	cpe:2.3:o:juniper:junos:15.1x53:d48::::::
	cpe:2.3:o:juniper:junos:15.1x53:d495::::::
	cpe:2.3:o:juniper:junos:15.1x53:d50::::::
	cpe:2.3:o:juniper:junos:15.1x53:d51::::::
	cpe:2.3:o:juniper:junos:15.1x53:d52::::::
	cpe:2.3:o:juniper:junos:15.1x53:d55::::::
	cpe:2.3:o:juniper:junos:15.1x53:d56::::::
	cpe:2.3:o:juniper:junos:15.1x53:d57::::::
	cpe:2.3:o:juniper:junos:15.1x53:d58::::::
	cpe:2.3:o:juniper:junos:15.1x53:d59::::::
	cpe:2.3:o:juniper:junos:15.1x53:d590::::::
	cpe:2.3:o:juniper:junos:15.1x53:d591::::::
	cpe:2.3:o:juniper:junos:15.1x53:d60::::::
	cpe:2.3:o:juniper:junos:15.1x53:d61::::::
	cpe:2.3:o:juniper:junos:15.1x53:d62::::::
	cpe:2.3:o:juniper:junos:15.1x53:d63::::::
	cpe:2.3:o:juniper:junos:15.1x53:d64::::::
	cpe:2.3:o:juniper:junos:15.1x53:d65::::::
	cpe:2.3:o:juniper:junos:15.1x53:d66::::::
	cpe:2.3:o:juniper:junos:15.1x53:d67::::::
	cpe:2.3:o:juniper:junos:15.1x53:d68::::::
	cpe:2.3:o:juniper:junos:15.1x53:d69::::::
	cpe:2.3:o:juniper:junos:15.1x53:d70::::::
	cpe:2.3:o:juniper:junos:15.1x53-d50:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d51:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d52:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d55:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d57:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d58:::::::*
	cpe:2.3:o:juniper:junos:15.1x53-d59:::::::*

OR	cpe:2.3:h:juniper:ex2300:-:::::::*
	cpe:2.3:h:juniper:ex3400:-:::::::*

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2020-12481	A vulnerability in the BGP FlowSpec implementation may cause a Juniper Networks Junos OS device to terminate an established BGP session upon receiving a specific BGP FlowSpec advertisement. The BGP NOTIFICATION message that terminates an established BGP session is sent toward the peer device that originally sent the specific BGP FlowSpec advertisement. This specific BGP FlowSpec advertisement received from a BGP peer might get propagated from a Junos OS device running the fixed release to another device that is vulnerable causing BGP session termination downstream. This issue affects IPv4 and IPv6 BGP FlowSpec deployment. This issue affects Juniper Networks Junos OS: 12.3; 12.3X48 on SRX Series; 14.1X53 on EX and QFX Series; 15.1 versions prior to 15.1R7-S5; 15.1F versions prior to 15.1F6-S13; 15.1X49 versions prior to 15.1X49-D180 on SRX Series; 15.1X53 versions prior to 15.1X53-D238 on QFX5200/QFX5110; 15.1X53 versions prior to 15.1X53-D497 on NFX Series; 15.1X53 versions prior to 15.1X53-D592 on EX2300/EX3400; 16.1 versions prior to 16.1R7-S7; 17.1 versions prior to 17.1R2-S12, 17.1R3; 17.2 versions prior to 17.2R2-S7, 17.2R3; 17.2X75 versions prior to 17.2X75-D102, 17.2X75-D110, 17.2X75-D44; 17.3 versions prior to 17.3R2-S5, 17.3R3-S5; 17.4 versions prior to 17.4R1-S8, 17.4R2; 18.1 versions prior to 18.1R2-S4, 18.1R3; 18.2X75 versions prior to 18.2X75-D20.

Fixes

Solution

The following software releases have been updated to resolve this specific issue: 15.1R7-S5, 15.1F6-S13, 15.1X49-D180, 15.1X53-D238, 15.1X53-D497, 15.1X53-D592, 16.1R7-S7, 17.1R3,17.2R2-S7, 17.2R3,17.2X75-D102, 17.2X75-D110, 17.3R3-S5, 17.4R1-S8, 17.4R2, 18.1R2-S4, 18.1R3, 18.2X75-D20, 18.2R1, and all subsequent releases.

Workaround

There are no known workarounds for this issue.

References

Link	Providers
https://kb.juniper.net/JSA10996

History

No history.

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: juniper

Published: 2020-04-08T19:25:52.499096Z

Updated: 2024-09-16T17:43:36.558Z

Reserved: 2019-11-04T00:00:00

Link: CVE-2020-1613

Vulnrichment

No data.

NVD

Status : Modified

Published: 2020-04-08T20:15:13.043

Modified: 2024-11-21T05:10:57.927

Link: CVE-2020-1613

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Projects

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object