Vulnerability Details CVE-2020-1651
On Juniper Networks MX series, receipt of a stream of specific Layer 2 frames may cause a memory leak resulting in the packet forwarding engine (PFE) on the line card to crash and restart, causing traffic interruption. By continuously sending this stream of specific layer 2 frame, an attacker connected to the same broadcast domain can repeatedly crash the PFE, causing a prolonged Denial of Service (DoS). This issue affects Juniper Networks Junos OS on MX Series: 17.2 versions prior to 17.2R3-S4; 17.2X75 versions prior to 17.2X75-D105.19; 17.3 versions prior to 17.3R3-S7; 17.4 versions prior to 17.4R1-S3, 17.4R2; 18.1 versions prior to 18.1R2. This issue does not affect Juniper Networks Junos OS releases prior to 17.2R1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.8%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 3.3
Products affected by CVE-2020-1651
-
cpe:2.3:h:juniper:mx10000:-
-
cpe:2.3:h:juniper:mx10003:-
-
cpe:2.3:h:juniper:mx104:-
-
cpe:2.3:h:juniper:mx10:-
-
cpe:2.3:h:juniper:mx150:-
-
cpe:2.3:h:juniper:mx2008:-
-
cpe:2.3:h:juniper:mx2010:-
-
cpe:2.3:h:juniper:mx2020:-
-
cpe:2.3:h:juniper:mx204:-
-
cpe:2.3:h:juniper:mx240:-
-
cpe:2.3:h:juniper:mx40:-
-
cpe:2.3:h:juniper:mx480:-
-
cpe:2.3:h:juniper:mx5:-
-
cpe:2.3:h:juniper:mx80:-
-
cpe:2.3:h:juniper:mx960:-
-
cpe:2.3:o:juniper:junos:17.2
-
cpe:2.3:o:juniper:junos:17.2x75
-
cpe:2.3:o:juniper:junos:17.3
-
cpe:2.3:o:juniper:junos:17.4
-
cpe:2.3:o:juniper:junos:18.1