CVE-2021-0281
On Juniper Networks Junos OS devices configured with BGP origin validation using Resource Public Key Infrastructure (RPKI) receipt of a specific packet from the RPKI cache server may cause routing process daemon (RPD) to crash and restart, creating a Denial of Service (DoS) condition. Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS 17.3 versions prior to 17.3R3-S12; 17.4 versions prior to 17.4R3-S5; 18.1 versions prior to 18.1R3-S13; 18.2 versions prior to 18.2R3-S8; 18.3 versions prior to 18.3R3-S5; 18.4 versions prior to 18.4R2-S8, 18.4R3-S8; 19.1 versions prior to 19.1R3-S5; 19.2 versions prior to 19.2R3-S2; 19.3 versions prior to 19.3R2-S6, 19.3R3-S2; 19.4 versions prior to 19.4R2-S4, 19.4R3-S3; 20.1 versions prior to 20.1R3; 20.2 versions prior to 20.2R3; 20.3 versions prior to 20.3R2; 20.4 versions prior to 20.4R2. Juniper Networks Junos OS Evolved All versions prior to 20.4R2-S2-EVO.
EPSS 0.28% · 51.5th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper Networks | Junos OS | 18.2, 17.3, 18.1 |
| Juniper Networks | Junos OS Evolved | All |
| juniper | junos | 17.3, 17.3, 17.3 |
Exploit Intelligence
- https://kb.juniper.net/JSA11185 (circl)
Timeline
- Jul 15, 2021 CVE Published
- Jul 16, 2021 EPSS Score
- Sep 14, 2021 EPSS Score
- Nov 12, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 11, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 10, 2022 EPSS Score
- Jul 9, 2022 EPSS Score
- Sep 7, 2022 EPSS Score
- Nov 6, 2022 EPSS Score