VYPR
Unrated severityNVD Advisory· Published Apr 22, 2021· Updated Sep 16, 2024

Junos OS: EX2200-C Series, EX3200 Series, EX3300 Series, EX4200 Series, EX4500 Series, EX4550 Series, EX6210 Series, EX8208 Series, EX8216 Series: Receipt of a crafted ARP packet by an adjacent attacker will cause the sfid process to core.

CVE-2021-0271

Description

A Double Free vulnerability in the software forwarding interface daemon (sfid) process of Juniper Networks Junos OS allows an adjacently-connected attacker to cause a Denial of Service (DoS) by sending a crafted ARP packet to the device. Continued receipt and processing of the crafted ARP packets will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS on EX2200-C Series, EX3200 Series, EX3300 Series, EX4200 Series, EX4500 Series, EX4550 Series, EX6210 Series, EX8208 Series, EX8216 Series. 12.3 versions prior to 12.3R12-S17; 15.1 versions prior to 15.1R7-S8. This issue only affects the listed Marvell-chipset based EX Series devices. No other products or platforms are affected.

Affected products

2
  • Juniper Networks/Junosllm-fuzzy2 versions
    12.3 prior to 12.3R12-S17; 15.1 prior to 15.1R7-S8+ 1 more
    • (no CPE)range: 12.3 prior to 12.3R12-S17; 15.1 prior to 15.1R7-S8
    • (no CPE)range: 12.3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.