CVE-2018-0026

EPSS 0.77%
Published 11.07.2018 18:29:00
Last modified 21.11.2024 03:37:23
Source sirt@juniper.net
Teams watchlist Login
Open Login

After Junos OS device reboot or upgrade, the stateless firewall filter configuration may not take effect. This issue can be verified by running the command: user@re0> show interfaces <interface_name> extensive | match filters" CAM destination filters: 0, CAM source filters: 0 Note: when the issue occurs, it does not show the applied firewall filter. The correct output should show the applied firewall filter, for example: user@re0> show interfaces <interface_name> extensive | match filters" CAM destination filters: 0, CAM source filters: 0 Input Filters: FIREWAL_FILTER_NAME-<interface_name> This issue affects firewall filters for every address family. Affected releases are Juniper Networks Junos OS: 15.1R4, 15.1R5, 15.1R6 and SRs based on these MRs. 15.1X8 versions prior to 15.1X8.3.

Affected products Warnungen 0 Metrics 4 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Juniper ≫ Junos Version15.1 Updater4

Juniper ≫ Junos Version15.1 Updater5

Juniper ≫ Junos Version15.1 Updater6

Juniper ≫ Junos Version15.1x8

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.77%	0.726

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:P/A:N
sirt@juniper.net	4.7	2.8	1.4	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N

http://www.securityfocus.com/bid/104720

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1041315

Third Party Advisory

VDB Entry

https://kb.juniper.net/JSA10859

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2018-0026

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-0026

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-0026

EUVD