CVE-2018-0005 HIGH

CVE-2018-0005: Security Bulletin: Junos OS: MAC move limit configured to drop traffic may forward traffic.

Vendor Juniper Networks
Product Junos OS
Published January 10, 2018
Last update September 17, 2024

CVSS base score

7.4/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

What the vulnerability does

01Description

QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7.

Key dates

02Disclosure timeline

January 10, 2018 CVE published
September 17, 2024 Record updated