An Improper Input Validation vulnerability in routing process daemon (RPD) of Juniper Networks Junos OS devices configured with BGP origin validation using Resource Public Key Infrastructure (RPKI), allows an attacker to send a specific BGP update which may cause RPKI policy-checks to be bypassed. This, in turn, may allow a spoofed advertisement to be accepted or propagated. This issue affects: Juniper Networks Junos OS 12.3 versions prior to 12.3R12-S18; 15.1 versions prior to 15.1R7-S9; 17.2 versions prior to 17.2R3-S3; 17.3 versions prior to 17.3R3-S7; 17.4 versions prior to 17.4R2-S9, 17.4R3; 18.1 versions prior to 18.1R3-S13; 18.2 versions prior to 18.2R3-S3; 18.3 versions prior to 18.3R3-S1; 18.4 versions prior to 18.4R3; 19.1 versions prior to 19.1R2; 19.2 versions prior to 19.2R2; 19.3 versions prior to 19.3R2.
References
Link | Resource |
---|---|
https://kb.juniper.net/JSA11240 | Vendor Advisory |
https://kb.juniper.net/JSA11240 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 06:05
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.2 |
References | () https://kb.juniper.net/JSA11240 - Vendor Advisory |
Information
Published : 2021-10-19 19:15
Updated : 2024-11-21 06:05
NVD link : CVE-2021-31375
Mitre link : CVE-2021-31375
CVE.ORG link : CVE-2021-31375
JSON object : View
Products Affected
juniper
- junos
CWE
CWE-20
Improper Input Validation
CWE-358Improperly Implemented Security Check for Standard
NVD-CWE-Other