CVE-2020-1634 HIGH

CVE-2020-1634: Junos OS: High-End SRX Series: Multicast traffic might cause all FPCs to reset.

Vendor Juniper Networks
Product Junos OS
Weakness CWE-190
Published April 8, 2020
Last update September 16, 2024

CVSS base score

7.5/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

On High-End SRX Series devices, in specific configurations and when specific networking events or operator actions occur, an SPC receiving genuine multicast traffic may core. Subsequently, all FPCs in a chassis may reset causing a Denial of Service. This issue affects both IPv4 and IPv6. This issue affects: Juniper Networks Junos OS 12.3X48 version 12.3X48-D80 and later versions prior to 12.3X48-D95 on High-End SRX Series. This issue does not affect Branch SRX Series devices.

Key dates

02Disclosure timeline

April 8, 2020 CVE published
September 16, 2024 Record updated