CVE-2021-0243

EPSS 0.08%
Published 22.04.2021 20:15:09
Last modified 21.11.2024 05:42:17
Source sirt@juniper.net
Teams watchlist Login
Open Login

Improper Handling of Unexpected Data in the firewall policer of Juniper Networks Junos OS on EX4300 switches allows matching traffic to exceed set policer limits, possibly leading to a limited Denial of Service (DoS) condition. When the firewall policer discard action fails on a Layer 2 port, it will allow traffic to pass even though it exceeds set policer limits. Traffic will not get discarded, and will be forwarded even though a policer discard action is configured. When the issue occurs, traffic is not discarded as desired, which can be observed by comparing the Input bytes with the Output bytes using the following command: user@junos> monitor interface traffic Interface Link Input bytes (bps) Output bytes (bps) ge-0/0/0 Up 37425422 (82616) 37425354 (82616) <<<< egress ge-0/0/1 Up 37425898 (82616) 37425354 (82616) <<<< ingress The expected output, with input and output counters differing, is shown below: Interface Link Input bytes (bps) Output bytes (bps) ge-0/0/0 Up 342420570 (54600) 342422760 (54600) <<<< egress ge-0/0/1 Up 517672120 (84000) 342420570 (54600) <<<< ingress This issue only affects IPv4 policing. IPv6 traffic and firewall policing actions are not affected by this issue. This issue affects Juniper Networks Junos OS on the EX4300: All versions prior to 17.3R3-S10; 17.4 versions prior to 17.4R3-S3; 18.1 versions prior to 18.1R3-S11; 18.2 versions prior to 18.2R3-S6; 18.3 versions prior to 18.3R3-S4; 18.4 versions prior to 18.4R3-S6; 19.1 versions prior to 19.1R3-S3; 19.2 versions prior to 19.2R3-S1; 19.3 versions prior to 19.3R3-S1; 19.4 versions prior to 19.4R3; 20.1 versions prior to 20.1R2; 20.2 versions prior to 20.2R2.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Juniper ≫ Junos Version17.3 Update-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater1-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater2-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater2-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater2-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater2-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3 Edition-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3-s6

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3-s7

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3-s8

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.3 Updater3-s9

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Update-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater1-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater1-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater1-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater1-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater1-s6

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater1-s7

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s10

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s11

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s12

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s6

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s7

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s8

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater2-s9

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater3-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version17.4 Updater3-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Update-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater2-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater2-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s10

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s6

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s7

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s8

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.1 Updater3-s9

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Update-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater1 Edition-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater1-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater1-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater1-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater1-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater2-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater2-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater2-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater2-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater2-s6

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater2-s7

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater3-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater3-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater3-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater3-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.2 Updater3-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Update-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater1-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater1-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater1-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater1-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater1-s6

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater2-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater2-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater2-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater3-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater3-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.3 Updater3-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Update-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater1-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater1-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater1-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater1-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater1-s6

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater1-s7

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater2-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater2-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater2-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater2-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater2-s6

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater3-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater3-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater3-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater3-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version18.4 Updater3-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Update-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater1-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater1-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater1-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater1-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater3-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.1 Updater3-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Update-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater1-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater1-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater1-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater1-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.2 Updater3-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Update-

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Updater2-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Updater2-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Updater2-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Updater2-s5

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.3 Updater3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.4 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.4 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.4 Updater1-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.4 Updater2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.4 Updater2-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version19.4 Updater2-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version20.1 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version20.1 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version20.1 Updater1-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version20.1 Updater1-s3

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version20.1 Updater1-s4

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version20.2 Updater1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version20.2 Updater1-s1

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version20.2 Updater1-s2

Juniper ≫ Ex4300 Version-

Juniper ≫ Junos Version20.2 Updater1-s3

Juniper ≫ Ex4300 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.08%	0.203

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	3.3	6.5	2.9	AV:A/AC:L/Au:N/C:N/I:N/A:P
sirt@juniper.net	4.7	2.8	1.4	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

CWE-241 Improper Handling of Unexpected Data Type

The product does not handle or incorrectly handles when a particular element is not the expected type, e.g. it expects a digit (0-9) but is provided with a letter (A-Z).

https://kb.juniper.net/JSA11136

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-0243

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-0243

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-0243

EUVD