QID 43923

Juniper Junos is the network operating system used in Juniper Networks hardware systems.

A vulnerability in the processing of inbound IPv6 packets in Juniper Networks Junos OS on QFX5000 Series and EX4600 switches may cause the memory to not be freed, leading to a packet DMA memory leak, and eventual Denial of Service (DoS) condition.

Affected Junos OS versions:
18.3R3 versions prior to 18.3R3-S6
18.4 versions prior to 18.4R2-S9, 18.4R3-S9
19.1 versions prior to 19.1R2-S3, 19.1R3-S7
19.2 versions prior to 19.2R1-S8, 19.2R3-S3
19.3 versions prior to 19.3R2-S7, 19.3R3-S4
19.4 versions prior to 19.4R2-S5, 19.4R3-S6
20.1 versions prior to 20.1R3-S1
20.2 versions prior to 20.2R3-S2
20.3 versions prior to 20.3R3-S1
20.4 versions prior to 20.4R3
21.1 versions prior to 21.1R2-S1, 21.1R3
21.2 versions prior to 21.2R1-S1, 21.2R2

This issue does not affect Juniper Networks Junos OS:
Any versions prior to 17.4R3
18.1 versions prior to 18.1R3-S6
18.2 versions prior to 18.2R3
18.3 versions prior to 18.3R3
18.4 versions prior to 18.4R2
19.1 versions prior to 19.1R2

NOTE:
This vulnerability only affects to Junos OS on QFX5000 Series and EX4600 switches.

QID detection logic: (Authenticated)
It checks for vulnerable Junos OS version.

Successful exploitation of this vulnerability may lead to an inoperable state of the affected system causing a DoS.