CVE-2020-1634

On High-End SRX Series devices, in specific configurations and when specific networking events or operator actions occur, an SPC receiving genuine multicast traffic may core. Subsequently, all FPCs in a chassis may reset causing a Denial of Service. This issue affects both IPv4 and IPv6. This issue affects: Juniper Networks Junos OS 12.3X48 version 12.3X48-D80 and later versions prior to 12.3X48-D95 on High-End SRX Series. This issue does not affect Branch SRX Series devices.

Published: Apr 8, 2020
Updated: Apr 13, 2023
CVE: CVE-2020-1634
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
juniper / junos	12.3x48-d10	12.3x48-d10.x
juniper / junos	12.3x48-d15	12.3x48-d15.x
juniper / junos	12.3x48-d35	12.3x48-d35.x
juniper / junos	12.3x48-d50	12.3x48-d50.x
juniper / junos	12.3x48-d30	12.3x48-d30.x
juniper / junos	12.3x48-d25	12.3x48-d25.x
juniper / junos	12.3x48-d45	12.3x48-d45.x
juniper / junos	12.3x48-d55	12.3x48-d55.x
juniper / junos	12.3x48-d20	12.3x48-d20.x
juniper / junos	12.3x48-d40	12.3x48-d40.x
juniper / junos	12.3x48-d60	12.3x48-d60.x
juniper / junos	12.3x48-d65	12.3x48-d65.x
juniper / junos	12.3x48-d70	12.3x48-d70.x
juniper / junos	12.3x48-d75	12.3x48-d75.x
juniper / junos	12.3x48-d51	12.3x48-d51.x
juniper / junos	12.3x48-d80	12.3x48-d80.x
juniper / junos	12.3x48	12.3x48.x

https://kb.juniper.net/JSA11014

Vulnerability Database

CVE-2020-1634

Deep Security Visibility Without the Complexity