CVE-2019-0002

On EX2300 and EX3400 series, stateless firewall filter configuration that uses the action 'policer' in combination with other actions might not take effect. When this issue occurs, the output of the command: show pfe filter hw summary will not show the entry for: RACL group Affected releases are Junos OS on EX2300 and EX3400 series: 15.1X53 versions prior to 15.1X53-D590; 18.1 versions prior to 18.1R3; 18.2 versions prior to 18.2R2. This issue affect both IPv4 and IPv6 firewall filter.

Published: Jan 15, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-0002
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
juniper / junos	15.1x53-d57	15.1x53-d57.x
juniper / junos	15.1x53-d50	15.1x53-d50.x
juniper / junos	15.1x53-d51	15.1x53-d51.x
juniper / junos	15.1x53-d52	15.1x53-d52.x
juniper / junos	15.1x53-d55	15.1x53-d55.x
juniper / junos	15.1x53-d58	15.1x53-d58.x
juniper / junos	15.1x53-d59	15.1x53-d59.x
juniper / junos	18.1-r2	18.1-r2.x
juniper / junos	18.1-r1	18.1-r1.x
juniper / junos	18.1-r2-s2	18.1-r2-s2.x
juniper / junos	18.1	18.1.x
juniper / junos	18.1-r2-s1	18.1-r2-s1.x
juniper / junos	18.1-r2-s4	18.1-r2-s4.x
juniper / junos	18.2-r1-s4	18.2-r1-s4.x
juniper / junos	18.2-r1-s5	18.2-r1-s5.x
juniper / junos	18.2-r1	18.2-r1.x
juniper / junos	18.2	18.2.x
juniper / junos	18.2-r1-s3	18.2-r1-s3.x

Vulnerability Database

290,922

CVE-2019-0002