CVE-2018-0005
Summary
| CVE | CVE-2018-0005 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-01-10 22:29:00 UTC |
| Updated | 2019-10-09 23:30:00 UTC |
| Description | QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7. |
Risk And Classification
Problem Types: CWE-754
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Juniper | Ex2200 | - | All | All | All |
| Hardware | Juniper | Ex2200 | - | All | All | All |
| Hardware | Juniper | Ex2200-c | - | All | All | All |
| Hardware | Juniper | Ex2200-c | - | All | All | All |
| Hardware | Juniper | Ex2300 | - | All | All | All |
| Hardware | Juniper | Ex2300 | - | All | All | All |
| Hardware | Juniper | Ex2300-c | - | All | All | All |
| Hardware | Juniper | Ex2300-c | - | All | All | All |
| Hardware | Juniper | Ex3300 | - | All | All | All |
| Hardware | Juniper | Ex3300 | - | All | All | All |
| Hardware | Juniper | Ex3400 | - | All | All | All |
| Hardware | Juniper | Ex3400 | - | All | All | All |
| Hardware | Juniper | Ex4200 | - | All | All | All |
| Hardware | Juniper | Ex4200 | - | All | All | All |
| Hardware | Juniper | Ex4300 | - | All | All | All |
| Hardware | Juniper | Ex4300 | - | All | All | All |
| Hardware | Juniper | Ex4550 | - | All | All | All |
| Hardware | Juniper | Ex4550 | - | All | All | All |
| Hardware | Juniper | Ex4600 | - | All | All | All |
| Hardware | Juniper | Ex4600 | - | All | All | All |
| Hardware | Juniper | Ex9200 | - | All | All | All |
| Hardware | Juniper | Ex9200 | - | All | All | All |
| Hardware | Juniper | Ex Rps | - | All | All | All |
| Hardware | Juniper | Ex Rps | - | All | All | All |
| Operating System | Juniper | Junos | 14.1x53 | All | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d10 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d15 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d16 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d25 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d26 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d27 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d30 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d35 | All | All |
| Operating System | Juniper | Junos | 15.1 | r1 | All | All |
| Operating System | Juniper | Junos | 15.1 | r2 | All | All |
| Operating System | Juniper | Junos | 15.1 | r3 | All | All |
| Operating System | Juniper | Junos | 15.1 | r4 | All | All |
| Operating System | Juniper | Junos | 15.1 | r5 | All | All |
| Operating System | Juniper | Junos | 15.1 | r6 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d20 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d21 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d30 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d32 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d33 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d34 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d50 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d51 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d52 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | All | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d10 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d15 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d16 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d25 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d26 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d27 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d30 | All | All |
| Operating System | Juniper | Junos | 14.1x53 | d35 | All | All |
| Operating System | Juniper | Junos | 15.1 | r1 | All | All |
| Operating System | Juniper | Junos | 15.1 | r2 | All | All |
| Operating System | Juniper | Junos | 15.1 | r3 | All | All |
| Operating System | Juniper | Junos | 15.1 | r4 | All | All |
| Operating System | Juniper | Junos | 15.1 | r5 | All | All |
| Operating System | Juniper | Junos | 15.1 | r6 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d20 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d21 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d30 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d32 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d33 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d34 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d50 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d51 | All | All |
| Operating System | Juniper | Junos | 15.1x53 | d52 | All | All |
| Hardware | Juniper | Qfx10002 | - | All | All | All |
| Hardware | Juniper | Qfx10002 | - | All | All | All |
| Hardware | Juniper | Qfx10008 | - | All | All | All |
| Hardware | Juniper | Qfx10008 | - | All | All | All |
| Hardware | Juniper | Qfx10016 | - | All | All | All |
| Hardware | Juniper | Qfx10016 | - | All | All | All |
| Hardware | Juniper | Qfx5100 | - | All | All | All |
| Hardware | Juniper | Qfx5100 | - | All | All | All |
| Hardware | Juniper | Qfx5110 | - | All | All | All |
| Hardware | Juniper | Qfx5110 | - | All | All | All |
| Hardware | Juniper | Qfx5200 | - | All | All | All |
| Hardware | Juniper | Qfx5200 | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 2018-01 Security Bulletin: Junos OS: MAC move limit configured to drop traffic may forward traffic. (CVE-2018-0005) - Juniper Networks | CONFIRM | kb.juniper.net | Mitigation, Vendor Advisory |
| Juniper Junos Lets Remote Users Bypass MAC Move Limits on the Target System - SecurityTracker | SECTRACK | www.securitytracker.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.