CVE-2019-0060
Summary
| CVE | CVE-2019-0060 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-10-09 20:15:00 UTC |
| Updated | 2021-02-05 16:49:00 UTC |
| Description | The flowd process, responsible for forwarding traffic in SRX Series services gateways, may crash and restart when processing specific transit IP packets through an IPSec tunnel. Continued processing of these packets may result in an extended Denial of Service (DoS) condition. This issue only occurs when IPSec tunnels are configured. Systems without IPSec tunnel configurations are not vulnerable to this issue. This issue affects Juniper Networks Junos OS: 15.1X49 versions prior to 15.1X49-D171, 15.1X49-D180 on SRX Series; 18.2 versions 18.2R2-S1 and later, prior to 18.2R3 on SRX Series; 18.4 versions prior to 18.4R2 on SRX Series. |
Risk And Classification
Problem Types: CWE-755
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Juniper | Csrx | - | All | All | All |
| Hardware | Juniper | Csrx | - | All | All | All |
| Operating System | Juniper | Junos | 15.1x49 | - | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d10 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d100 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d110 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d120 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d130 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d140 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d150 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d160 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d170 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d20 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d30 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d35 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d40 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d45 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d50 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d55 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d60 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d65 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d70 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d75 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d80 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d90 | All | All |
| Operating System | Juniper | Junos | 18.2 | - | All | All |
| Operating System | Juniper | Junos | 18.2 | r1-s5 | All | All |
| Operating System | Juniper | Junos | 18.4 | - | All | All |
| Operating System | Juniper | Junos | 18.4 | r1 | All | All |
| Operating System | Juniper | Junos | 18.4 | r1-s2 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | - | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d10 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d100 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d110 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d120 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d130 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d140 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d150 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d160 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d170 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d20 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d30 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d35 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d40 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d45 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d50 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d55 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d60 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d65 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d70 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d75 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d80 | All | All |
| Operating System | Juniper | Junos | 15.1x49 | d90 | All | All |
| Operating System | Juniper | Junos | 18.2 | - | All | All |
| Operating System | Juniper | Junos | 18.2 | r1-s5 | All | All |
| Operating System | Juniper | Junos | 18.4 | - | All | All |
| Operating System | Juniper | Junos | 18.4 | r1 | All | All |
| Operating System | Juniper | Junos | 18.4 | r1-s2 | All | All |
| Hardware | Juniper | Srx100 | - | All | All | All |
| Hardware | Juniper | Srx100 | - | All | All | All |
| Hardware | Juniper | Srx110 | - | All | All | All |
| Hardware | Juniper | Srx110 | - | All | All | All |
| Hardware | Juniper | Srx1400 | - | All | All | All |
| Hardware | Juniper | Srx1400 | - | All | All | All |
| Hardware | Juniper | Srx1500 | - | All | All | All |
| Hardware | Juniper | Srx1500 | - | All | All | All |
| Hardware | Juniper | Srx210 | - | All | All | All |
| Hardware | Juniper | Srx210 | - | All | All | All |
| Hardware | Juniper | Srx220 | - | All | All | All |
| Hardware | Juniper | Srx220 | - | All | All | All |
| Hardware | Juniper | Srx240 | - | All | All | All |
| Hardware | Juniper | Srx240 | - | All | All | All |
| Hardware | Juniper | Srx300 | - | All | All | All |
| Hardware | Juniper | Srx300 | - | All | All | All |
| Hardware | Juniper | Srx320 | - | All | All | All |
| Hardware | Juniper | Srx320 | - | All | All | All |
| Hardware | Juniper | Srx340 | - | All | All | All |
| Hardware | Juniper | Srx340 | - | All | All | All |
| Hardware | Juniper | Srx3400 | - | All | All | All |
| Hardware | Juniper | Srx3400 | - | All | All | All |
| Hardware | Juniper | Srx345 | - | All | All | All |
| Hardware | Juniper | Srx345 | - | All | All | All |
| Hardware | Juniper | Srx3600 | - | All | All | All |
| Hardware | Juniper | Srx3600 | - | All | All | All |
| Hardware | Juniper | Srx4100 | - | All | All | All |
| Hardware | Juniper | Srx4100 | - | All | All | All |
| Hardware | Juniper | Srx4200 | - | All | All | All |
| Hardware | Juniper | Srx4200 | - | All | All | All |
| Hardware | Juniper | Srx4600 | - | All | All | All |
| Hardware | Juniper | Srx4600 | - | All | All | All |
| Hardware | Juniper | Srx5400 | - | All | All | All |
| Hardware | Juniper | Srx5400 | - | All | All | All |
| Hardware | Juniper | Srx550 | - | All | All | All |
| Hardware | Juniper | Srx550 | - | All | All | All |
| Hardware | Juniper | Srx550 Hm | - | All | All | All |
| Hardware | Juniper | Srx550 Hm | - | All | All | All |
| Hardware | Juniper | Srx5600 | - | All | All | All |
| Hardware | Juniper | Srx5600 | - | All | All | All |
| Hardware | Juniper | Srx5800 | - | All | All | All |
| Hardware | Juniper | Srx5800 | - | All | All | All |
| Hardware | Juniper | Srx650 | - | All | All | All |
| Hardware | Juniper | Srx650 | - | All | All | All |
| Hardware | Juniper | Vsrx | - | All | All | All |
| Hardware | Juniper | Vsrx | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| IPsec Tunnel Traffic Configuration - TechLibrary - Juniper Networks | MISC | www.juniper.net | Vendor Advisory |
| 2019-10 Security Bulletin: Junos OS: SRX Series: flowd process crash due to processing of specific transit IP packets (CVE-2019-0060) - Juniper Networks | MISC | kb.juniper.net | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.