CVE-2020-1605 : What You Need to Know

This CVE-2020-1605 article provides detailed information about a vulnerability in JDHCPD on Junos OS and Junos OS Evolved, with mitigation measures and impact analysis.

Understanding CVE-2020-1605

This CVE concerns a vulnerability in Juniper Network's Dynamic Host Configuration Protocol Daemon (JDHCPD) in relay mode allowing arbitrary command execution through IPv4 packets.

What is CVE-2020-1605?

When JDHCPD is configured in relay mode, an attacker sending crafted IPv4 packets can execute commands as root on the target device, impacting specific Junos OS and Junos OS Evolved versions.

The Impact of CVE-2020-1605

The vulnerability has a CVSSv3.1 base score of 8.8 (High), affecting confidentiality, integrity, and availability with no user interaction required.

Technical Details of CVE-2020-1605

This section details the vulnerability, affected systems, versions, and exploitation mechanism.

Vulnerability Description

The vulnerability allows remote attackers to execute arbitrary commands on Junos OS and Junos OS Evolved devices via crafted IPv4 packets.

Affected Systems and Versions

Affected versions of Junos OS: 15.1 to 19.2, prior to specified patches.
Junos OS Evolved: All versions before 19.3R1.

Exploitation Mechanism

The attack vector is via an adjacent network with low attack complexity and no privileges required.

Mitigation and Prevention

Here are the necessary steps to address CVE-2020-1605.

Immediate Steps to Take

Update affected Junos OS to versions 15.1R7-S6 and later, and Junos OS Evolved to 19.3R1 or higher.
Disable JDHCPD if not essential in the device configuration.

Long-Term Security Practices

Regularly apply software updates and patches to address known vulnerabilities.
Monitor vendor advisories and security bulletins for the latest information.

Patching and Updates

The latest software releases have been published to resolve this issue across Junos OS and Junos OS Evolved.