Products

Solutions

Company

Book A Live Demo

CVE-2018-0058 : Security Advisory and Response

Learn about CVE-2018-0058, a vulnerability in Juniper Networks Junos OS on MX Series platforms leading to a denial of service. Find out the impact, affected versions, and mitigation steps.

A vulnerability in Juniper Networks Junos OS on MX Series platforms could lead to a denial of service due to a specially crafted IPv6 exception packet.

Understanding CVE-2018-0058

This CVE involves a specific issue in the processing of Broadband Edge (BBE) client route processing on MX Series subscriber management platforms.

What is CVE-2018-0058?

The vulnerability triggers a kernel crash (vmcore) and subsequent device reboot when a specially designed IPv6 exception packet is received.

The Impact of CVE-2018-0058

Severity

CVSS Base Score

Attack Vector

Availability Impact

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Technical Details of CVE-2018-0058

This section provides detailed technical information about the vulnerability.

Vulnerability Description

The issue is specific to the Tomcat (Next Generation Subscriber Management) feature in Junos OS 15.1 on MX Series platforms.

Affected Systems and Versions

Juniper Networks Junos OS versions prior to 15.1R7-S2, 15.1R8 on MX Series 15.1

Versions prior to 16.1R4-S11, 16.1R7-S2, 16.1R8 on MX Series 16.1

Versions prior to 16.2R3 on MX Series 16.2

Versions prior to 17.1R2-S9, 17.1R3 on MX Series 17.1

Versions prior to 17.2R2-S6, 17.2R3 on MX Series 17.2

Versions prior to 17.3R2-S4, 17.3R3-S2, 17.3R4 on MX Series 17.3

Versions prior to 17.4R2 on MX Series 17.4

Versions prior to 18.1R2-S3, 18.1R3 on MX Series 18.1

Versions prior to 18.2R1-S1, 18.2R2 on MX Series 18.2

Exploitation Mechanism

Juniper SIRT has not detected any malicious exploitation of this vulnerability.

Mitigation and Prevention

Steps to address and prevent the CVE-2018-0058 vulnerability.

Immediate Steps to Take

Apply the provided software releases to resolve the issue.

Long-Term Security Practices

Regularly update Junos OS to the latest versions.

Monitor vendor security advisories for any new vulnerabilities.

Patching and Updates

Install the following software releases to fix the vulnerability: 15.1R7-S2, 15.1R8, 16.1R4-S11, 16.1R7-S2, 16.1R8, 16.2R3, 17.1R2-S9, 17.1R3, 17.2R2-S6, 17.2R3, 17.3R2-S4, 17.3R3-S2*, 17.3R4, 17.4R2, 18.1R2-S3, 18.1R3, 18.2R1-S1, 18.2R2, 18.3R1, and subsequent releases.

CVE-2018-0058 : Security Advisory and Response

Understanding CVE-2018-0058

What is CVE-2018-0058?

The Impact of CVE-2018-0058

Technical Details of CVE-2018-0058

Vulnerability Description

Affected Systems and Versions

Exploitation Mechanism

Mitigation and Prevention

Immediate Steps to Take

Long-Term Security Practices

Patching and Updates

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities?
Find Out Now

CVE-2018-0058 : Security Advisory and Response

.css-lczsrn{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:24px;font-weight:700;margin-top:1rem;font-family:sans-serif;}Understanding CVE-2018-0058

.css-ru2q5j{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:1.2rem;font-weight:700;margin-top:1rem;margin-bottom:0rem;font-family:sans-serif;}What is CVE-2018-0058?

The Impact of CVE-2018-0058

Technical Details of CVE-2018-0058

Vulnerability Description

Affected Systems and Versions

Exploitation Mechanism

Mitigation and Prevention

Immediate Steps to Take

Long-Term Security Practices

Patching and Updates

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities? Find Out Now

Understanding CVE-2018-0058

What is CVE-2018-0058?

Is your System Free of Underlying Vulnerabilities?
Find Out Now