CVE-2021-0287 vulnerability in Juniper Networks Products
Published on July 15, 2021
Junos OS and Junos OS Evolved: RPD could crash in SR-ISIS/MPLS environment due to a flap of an ISIS link in the network
In a Segment Routing ISIS (SR-ISIS)/MPLS environment, on Juniper Networks Junos OS and Junos OS Evolved devices, configured with ISIS Flexible Algorithm for Segment Routing and sensor-based statistics, a flap of a ISIS link in the network, can lead to a routing process daemon (RPD) crash and restart, causing a Denial of Service (DoS). Continued link flaps will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS: 19.4 versions prior to 19.4R1-S4, 19.4R3-S2; 20.1 versions prior to 20.1R2-S1, 20.1R3; 20.2 versions prior to 20.2R2-S2, 20.2R3; 20.3 versions prior to 20.3R2; Juniper Networks Junos OS Evolved: 20.3-EVO versions prior to 20.3R2-EVO; 20.4-EVO versions prior to 20.4R2-EVO. This issue does not affect: Juniper Networks Junos OS releases prior to 19.4R1. Juniper Networks Junos OS Evolved releases prior to 19.4R1-EVO.
Vulnerability Analysis
Weakness Type
Improper Check for Unusual or Exceptional Conditions
The software does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the software.
Products Associated with CVE-2021-0287
Want to know whenever a new CVE is published for Juniper Networks products? stack.watch will email you.
Affected Versions
Juniper Networks Junos OS:- Version unspecified and below 19.4R1 is unaffected.
- Version 19.4R1 and below 19.4* is affected.
- Version 20.1 and below 20.1R2-S1, 20.1R3 is affected.
- Version 20.2 and below 20.2R2-S2, 20.2R3 is affected.
- Version 20.3 and below 20.3R2 is affected.
- Version unspecified and below 19.4R1-EVO is unaffected.
- Version 19.4R1-EVO and below 19.4* is affected.
- Version 20.1R1-EVO and below 20.1* is affected.
- Version 20.2R1-EVO and below 20.2* is affected.
- Version 20.3 and below 20.3R2-EVO is affected.
- Version 20.4 and below 20.4R2-EVO is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.