CVE-2021-0271

Description

A Double Free vulnerability in the software forwarding interface daemon (sfid) process of Juniper Networks Junos OS allows an adjacently-connected attacker to cause a Denial of Service (DoS) by sending a crafted ARP packet to the device. Continued receipt and processing of the crafted ARP packets will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS on EX2200-C Series, EX3200 Series, EX3300 Series, EX4200 Series, EX4500 Series, EX4550 Series, EX6210 Series, EX8208 Series, EX8216 Series. 12.3 versions prior to 12.3R12-S17; 15.1 versions prior to 15.1R7-S8. This issue only affects the listed Marvell-chipset based EX Series devices. No other products or platforms are affected.

Related CPE's

o juniper junos 12.3 -******

o juniper junos 12.3 r1 ******

o juniper junos 12.3 r10 ******

o juniper junos 12.3 r10-s1 ******

o juniper junos 12.3 r10-s2 ******

o juniper junos 12.3 r11 ******

o juniper junos 12.3 r12 ******

o juniper junos 12.3 r12-s1 ******

o juniper junos 12.3 r12-s10 ******

o juniper junos 12.3 r12-s11 ******

References

https://kb.juniper.net/JSA11162

Vendor Advisory

CvssV3 impact

Version	3.1
VectorString	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AttackVector	NETWORK
AttackComplexity	LOW
PrivilegesRequired	NONE
UserInteraction	NONE
Scope	UNCHANGED
ConfidentialityImpact	NONE
IntegrityImpact	NONE
AvailabilityImpact	HIGH
BaseScore	7.5
BaseSeverity	HIGH

CvssV2 impact

AccessComplexity	LOW
ConfidentialityImpact	NONE
AvailabilityImpact	PARTIAL
IntegrityImpact	NONE
BaseScore	5
VectorString	AV:N/AC:L/Au:N/C:N/I:N/A:P
Version	2.0
AccessVector	NETWORK
Authentication	NONE