National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

CVE-2018-0034 Detail

Current Description

A Denial of Service vulnerability exists in the Juniper Networks Junos OS JDHCPD daemon which allows an attacker to core the JDHCPD daemon by sending a crafted IPv6 packet to the system. This issue is limited to systems which receives IPv6 DHCP packets on a system configured for DHCP processing using the JDHCPD daemon. This issue does not affect IPv4 DHCP packet processing. Affected releases are Juniper Networks Junos OS: 12.3 versions prior to 12.3R12-S10 on EX Series; 12.3X48 versions prior to 12.3X48-D70 on SRX Series; 14.1X53 versions prior to 14.1X53-D47 on EX2200/VC, EX3200, EX3300/VC, EX4200, EX4300, EX4550/VC, EX4600, EX6200, EX8200/VC (XRE), QFX3500, QFX3600, QFX5100; 14.1X53 versions prior to 14.1X53-D130 on QFabric; 15.1 versions prior to 15.1R4-S9, 15.1R6-S6, 15.1R7; 15.1X49 versions prior to 15.1X49-D140 on SRX Series; 15.1X53 versions prior to 15.1X53-D67 on QFX10000 Series; 15.1X53 versions prior to 15.1X53-D233 on QFX5110, QFX5200; 15.1X53 versions prior to 15.1X53-D471 on NFX 150, NFX 250; 16.1 versions prior to 16.1R3-S9, 16.1R4-S8, 16.1R5-S4, 16.1R6-S3, 16.1R7; 16.2 versions prior to 16.2R2-S5, 16.2R3; 17.1 versions prior to 17.1R1-S7, 17.1R2-S7, 17.1R3; 17.2 versions prior to 17.2R1-S6, 17.2R2-S4, 17.2R3; 17.3 versions prior to 17.3R1-S4, 17.3R2-S2, 17.3R3; 17.4 versions prior to 17.4R1-S3, 17.4R2.

Source:  MITRE
View Analysis Description

Impact

CVSS v3.0 Severity and Metrics:

Base Score: 5.9 MEDIUM
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H (V3 legend)
Impact Score: 3.6
Exploitability Score: 2.2


Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): None
Integrity (I): None
Availability (A): High

CVSS v2.0 Severity and Metrics:

Base Score: 4.3 MEDIUM
Vector: (AV:N/AC:M/Au:N/C:N/I:N/A:P) (V2 legend)
Impact Subscore: 2.9
Exploitability Subscore: 8.6


Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (AU): None
Confidentiality (C): None
Integrity (I): None
Availability (A): Partial
Additional Information:
Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink Resource
http://www.securitytracker.com/id/1041338 Third Party Advisory VDB Entry
https://apps.juniper.net/feature-explorer/search.html#q=dhcp Vendor Advisory
https://kb.juniper.net/JSA10868 Vendor Advisory

Technical Details

Vulnerability Type (View All)

Known Affected Software Configurations Switch to CPE 2.3

Configuration 1 ( hide )
 cpe:/o:juniper:junos:12.3
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r1
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r10
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r11
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r12
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r2
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r3
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r4
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r5
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r6
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r7
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r8
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3:r9
     Show Matching CPE(s)
Running on/with
 cpe:/h:juniper:ex2200:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex2200-c:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex2200-vc:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex3200:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex3300:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex3300-vc:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4200:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4200-vc:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4500:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4500-vc:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4550:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4550-vc:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex6200:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex8200:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex8200-vc:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex9200:-
     Show Matching CPE(s)

Configuration 2 ( hide )
 cpe:/o:juniper:junos:12.3x48
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d10
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d15
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d20
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d25
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d30
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d35
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d40
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d45
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d50
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d55
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d60
     Show Matching CPE(s)
 cpe:/o:juniper:junos:12.3x48:d65
     Show Matching CPE(s)
Running on/with
 cpe:/h:juniper:srx100:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx110:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx1400:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx210:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx220:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx240:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx3400:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx3600:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx5400:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx550:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx5600:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx5800:-
     Show Matching CPE(s)
 cpe:/h:juniper:srx650:-
     Show Matching CPE(s)

Configuration 3 ( hide )
 cpe:/o:juniper:junos:14.1x53
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d10
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d15
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d16
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d20
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d25
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d26
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d27
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d30
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d35
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d40
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d42
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d43
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d44
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d45
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d46
     Show Matching CPE(s)
Running on/with
 cpe:/h:juniper:ex2200%2fvc:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex3200:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex3300%2fvc:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4200:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4300:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4550%2fvc:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex4600:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex6200:-
     Show Matching CPE(s)
 cpe:/h:juniper:ex8200%2fvc_%28xre%29:-
     Show Matching CPE(s)
 cpe:/h:juniper:qfx3500:-
     Show Matching CPE(s)
 cpe:/h:juniper:qfx3600:-
     Show Matching CPE(s)
 cpe:/h:juniper:qfx5100:-
     Show Matching CPE(s)

Configuration 4 ( hide )
 cpe:/o:juniper:junos:14.1x53
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d10
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d121
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d15
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d16
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d20
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d25
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d26
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d27
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d30
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d35
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d40
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d42
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d43
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d44
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d45
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d46
     Show Matching CPE(s)
 cpe:/o:juniper:junos:14.1x53:d47
     Show Matching CPE(s)
Running on/with

Configuration 5 ( hide )

Configuration 6 ( hide )

Configuration 7 ( hide )

Configuration 8 ( hide )

Configuration 9 ( hide )

Configuration 10 ( hide )

Configuration 11 ( hide )

Configuration 12 ( hide )

Configuration 13 ( hide )

Configuration 14 ( hide )

Configuration 15 ( hide )

Showing 100 of 262 CPEs, view all CPEs here.

Change History

2 change records found - show changes

Quick Info

CVE Dictionary Entry:
CVE-2018-0034
NVD Published Date:
07/11/2018
NVD Last Modified:
09/11/2018