CVE-2019-0075 : What You Need to Know

A weakness has been discovered in the srxpfe process on SRX series devices that have Protocol Independent Multicast (PIM) enabled, potentially leading to a denial of service vulnerability.

Understanding CVE-2019-0075

This CVE involves a vulnerability in the srxpfe process on SRX series devices with PIM enabled, causing potential service disruption.

What is CVE-2019-0075?

This vulnerability affects Juniper Networks Junos OS on SRX Series devices, leading to a crash of the srxpfe process and possible FPC reboot when processing PIM messages.

The Impact of CVE-2019-0075

The vulnerability could result in a prolonged denial of service if continuously exploited, affecting network availability.

Technical Details of CVE-2019-0075

This section provides detailed technical information about the vulnerability.

Vulnerability Description

The vulnerability in the srxpfe process on SRX series devices with PIM enabled can cause the process to crash, potentially leading to an FPC reboot.

Affected Systems and Versions

Platforms: SRX Series
Affected Product: Junos OS
Affected Versions: 12.3X48-D80, 15.1X49-D160, 17.3R3-S7, 17.4R2-S8, 17.4R3, 18.1R3-S8, 18.2R2, 18.3R2

Exploitation Mechanism

Attack Complexity: Low
Attack Vector: Network
Availability Impact: High
Base Score: 7.5 (High)
Privileges Required: None
Scope: Unchanged

Mitigation and Prevention

Steps to address and prevent the CVE-2019-0075 vulnerability.

Immediate Steps to Take

Update to the fixed software releases: 12.3X48-D80, 15.1X49-D160, 17.3R3-S7*, 17.4R2-S8*, 17.4R3*, 18.2R2, 18.3R2, 18.4R1, and subsequent releases.

Long-Term Security Practices

Regularly monitor and apply security patches.
Disable unnecessary services to reduce attack surface.
Implement network segmentation to contain potential threats.

Patching and Updates

Ensure timely installation of software updates and patches to mitigate known vulnerabilities.