CVE-2018-0005

QFX and EX Series switches configured to drop traffic when the MAC move limit is exceeded will forward traffic instead of dropping traffic. This can lead to denials of services or other unintended conditions. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D40; 15.1X53 versions prior to 15.1X53-D55; 15.1 versions prior to 15.1R7.

Published: Jan 10, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-0005
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.8
AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: Medium
Score: 5.8
AV:A/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-754

Affected Software
References

Software	From	Fixed in
juniper / junos	14.1x53-d15	14.1x53-d15.x
juniper / junos	14.1x53-d35	14.1x53-d35.x
juniper / junos	14.1x53-d10	14.1x53-d10.x
juniper / junos	14.1x53-d30	14.1x53-d30.x
juniper / junos	14.1x53-d25	14.1x53-d25.x
juniper / junos	14.1x53-d27	14.1x53-d27.x
juniper / junos	14.1x53-d16	14.1x53-d16.x
juniper / junos	14.1x53	14.1x53.x
juniper / junos	14.1x53-d26	14.1x53-d26.x
juniper / junos	15.1-r3	15.1-r3.x
juniper / junos	15.1-r6	15.1-r6.x
juniper / junos	15.1-r4	15.1-r4.x
juniper / junos	15.1-r2	15.1-r2.x
juniper / junos	15.1-r5	15.1-r5.x
juniper / junos	15.1-r1	15.1-r1.x
juniper / junos	15.1x53-d20	15.1x53-d20.x
juniper / junos	15.1x53-d30	15.1x53-d30.x
juniper / junos	15.1x53-d33	15.1x53-d33.x
juniper / junos	15.1x53-d32	15.1x53-d32.x
juniper / junos	15.1x53-d34	15.1x53-d34.x
juniper / junos	15.1x53-d21	15.1x53-d21.x
juniper / junos	15.1x53-d50	15.1x53-d50.x
juniper / junos	15.1x53-d51	15.1x53-d51.x
juniper / junos	15.1x53-d52	15.1x53-d52.x

Vulnerability Database

290,301

CVE-2018-0005