CVE-2018-0020 : What You Need to Know

Junos OS may be impacted by a vulnerability that can lead to a denial of service condition due to a malformed BGP UPDATE packet.

Understanding CVE-2018-0020

This CVE affects Juniper Networks Junos OS versions and specific platforms, potentially causing disruption and restart of the routing process daemon (rpd).

What is CVE-2018-0020?

The vulnerability in Junos OS can result in a crash and restart of the rpd if a malformed BGP UPDATE is received, leading to a denial of service situation for the device.

The Impact of CVE-2018-0020

Affected releases include various versions of Junos OS on different platforms like SRX, QFX10K, EX2300/EX3400, QFX5200/QFX5110, and NFX
The vulnerability does not spread to other BGP peers
Juniper SIRT has no knowledge of intentional misuse of this vulnerability

Technical Details of CVE-2018-0020

The vulnerability is rated with a CVSS base score of 7.5 (High).

Vulnerability Description

Attack Complexity: Low
Attack Vector: Network
Availability Impact: High
Base Severity: High
Confidentiality Impact: None
Integrity Impact: None
Privileges Required: None
Scope: Unchanged
User Interaction: None

Affected Systems and Versions

Junos OS versions prior to 14.1X53-D47, 15.1F6-S10, 15.1R4-S9, 15.1R6-S6, 15.1R7, and more are affected

Exploitation Mechanism

The vulnerability can be exploited by sending a malformed BGP UPDATE packet to the affected systems

Mitigation and Prevention

Immediate action is crucial to mitigate the impact of CVE-2018-0020.

Immediate Steps to Take

Update to the patched software releases provided by Juniper Networks
Limit BGP sessions only to trusted peers to reduce the risk

Long-Term Security Practices

Regularly monitor for security advisories and updates from Juniper Networks
Implement network segmentation and access controls to limit exposure to potential threats

Patching and Updates

Ensure all affected systems are updated to the patched software versions