CVE-2018-0062: Junos OS: Denial of Service in J-Web
First published: Wed Oct 10 2018(Updated: )
A Denial of Service vulnerability in J-Web service may allow a remote unauthenticated user to cause Denial of Service which may prevent other users to authenticate or to perform J-Web operations. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D77 on SRX Series; 12.3 versions prior to 12.3R12-S10; 12.3X48 versions prior to 12.3X48-D60 on SRX Series; 15.1 versions prior to 15.1R7; 15.1F6; 15.1X49 versions prior to 15.1X49-D120 on SRX Series; 15.1X53 versions prior to 15.1X53-D59 on EX2300/EX3400 Series; 15.1X53 versions prior to 15.1X53-D67 on QFX10K Series; 15.1X53 versions prior to 15.1X53-D234 on QFX5200/QFX5110 Series; 15.1X53 versions prior to 15.1X53-D470, 15.1X53-D495 on NFX Series; 16.1 versions prior to 16.1R6; 16.2 versions prior to 16.2R2-S6, 16.2R3; 17.1 versions prior to 17.1R2-S6, 17.1R3; 17.2 versions prior to 17.2R3; 17.3 versions prior to 17.3R2. No other Juniper Networks products or platforms are affected by this issue.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Junos OS Evolved | =12.1x46 | |
| Junos OS Evolved | =12.1x46-d10 | |
| Junos OS Evolved | =12.1x46-d15 | |
| Junos OS Evolved | =12.1x46-d20 | |
| Junos OS Evolved | =12.1x46-d25 | |
| Junos OS Evolved | =12.1x46-d30 | |
| Junos OS Evolved | =12.1x46-d35 | |
| Junos OS Evolved | =12.1x46-d40 | |
| Junos OS Evolved | =12.1x46-d45 | |
| Junos OS Evolved | =12.1x46-d50 | |
| Junos OS Evolved | =12.1x46-d55 | |
| Junos OS Evolved | =12.1x46-d60 | |
| Junos OS Evolved | =12.1x46-d65 | |
| Junos OS Evolved | =12.3 | |
| Junos OS Evolved | =12.3-r1 | |
| Junos OS Evolved | =12.3-r11 | |
| Junos OS Evolved | =12.3-r2 | |
| Junos OS Evolved | =12.3-r3 | |
| Junos OS Evolved | =12.3-r4 | |
| Junos OS Evolved | =12.3-r5 | |
| Junos OS Evolved | =12.3-r6 | |
| Junos OS Evolved | =12.3-r7 | |
| Junos OS Evolved | =12.3-r8 | |
| Junos OS Evolved | =12.3-r9 | |
| Junos OS Evolved | =12.3x48 | |
| Junos OS Evolved | =12.3x48-d10 | |
| Junos OS Evolved | =12.3x48-d15 | |
| Junos OS Evolved | =12.3x48-d20 | |
| Junos OS Evolved | =12.3x48-d25 | |
| Junos OS Evolved | =12.3x48-d30 | |
| Junos OS Evolved | =12.3x48-d35 | |
| Junos OS Evolved | =12.3x48-d40 | |
| Junos OS Evolved | =12.3x48-d45 | |
| Junos OS Evolved | =12.3x48-d50 | |
| Junos OS Evolved | =12.3x48-d55 | |
| Junos OS Evolved | =12.3x48-d60 | |
| Junos OS Evolved | =15.1 | |
| Junos OS Evolved | =15.1-f2 | |
| Junos OS Evolved | =15.1-f3 | |
| Junos OS Evolved | =15.1-f4 | |
| Junos OS Evolved | =15.1-f5 | |
| Junos OS Evolved | =15.1-f6 | |
| Junos OS Evolved | =15.1-f7 | |
| Junos OS Evolved | =15.1-r1 | |
| Junos OS Evolved | =15.1-r2 | |
| Junos OS Evolved | =15.1-r3 | |
| Junos OS Evolved | =15.1-r4 | |
| Junos OS Evolved | =15.1-r5 | |
| Junos OS Evolved | =15.1-r6 | |
| Junos OS Evolved | =15.1x49 | |
| Junos OS Evolved | =15.1x49-d10 | |
| Junos OS Evolved | =15.1x49-d100 | |
| Junos OS Evolved | =15.1x49-d110 | |
| Junos OS Evolved | =15.1x49-d20 | |
| Junos OS Evolved | =15.1x49-d30 | |
| Junos OS Evolved | =15.1x49-d35 | |
| Junos OS Evolved | =15.1x49-d40 | |
| Junos OS Evolved | =15.1x49-d45 | |
| Junos OS Evolved | =15.1x49-d50 | |
| Junos OS Evolved | =15.1x49-d55 | |
| Junos OS Evolved | =15.1x49-d60 | |
| Junos OS Evolved | =15.1x49-d65 | |
| Junos OS Evolved | =15.1x49-d70 | |
| Junos OS Evolved | =15.1x49-d75 | |
| Junos OS Evolved | =15.1x49-d80 | |
| Junos OS Evolved | =15.1x49-d90 | |
| Junos OS Evolved | =15.1x53 | |
| Junos OS Evolved | =15.1x53-d50 | |
| Junos OS Evolved | =15.1x53-d51 | |
| Junos OS Evolved | =15.1x53-d52 | |
| Junos OS Evolved | =15.1x53-d55 | |
| Junos OS Evolved | =15.1x53-d57 | |
| Junos OS Evolved | =15.1x53-d58 | |
| Juniper EX2300-24T | ||
| Juniper EX3400 | ||
| Junos OS Evolved | =15.1x53-d10 | |
| Junos OS Evolved | =15.1x53-d20 | |
| Junos OS Evolved | =15.1x53-d21 | |
| Junos OS Evolved | =15.1x53-d30 | |
| Junos OS Evolved | =15.1x53-d32 | |
| Junos OS Evolved | =15.1x53-d33 | |
| Junos OS Evolved | =15.1x53-d34 | |
| Junos OS Evolved | =15.1x53-d60 | |
| Junos OS Evolved | =15.1x53-d61 | |
| Junos OS Evolved | =15.1x53-d62 | |
| Junos OS Evolved | =15.1x53-d63 | |
| Junos OS Evolved | =15.1x53-d64 | |
| Junos OS Evolved | =15.1x53-d65 | |
| Junos OS Evolved | =15.1x53-d66 | |
| Juniper Networks QFX-Series | ||
| Junos OS Evolved | =15.1x53-d210 | |
| Junos OS Evolved | =15.1x53-d230 | |
| Junos OS Evolved | =15.1x53-d231 | |
| Junos OS Evolved | =15.1x53-d232 | |
| Juniper QFX5110 | ||
| Juniper QFX5200-32C | ||
| Junos OS Evolved | =15.1x53-d40 | |
| Junos OS Evolved | =15.1x53-d45 | |
| Junos OS Evolved | =15.1x53-d495 | |
| Juniper Networks NFX-Series | ||
| Junos OS Evolved | =16.1 | |
| Junos OS Evolved | =16.1-r1 | |
| Junos OS Evolved | =16.1-r2 | |
| Junos OS Evolved | =16.1-r3 | |
| Junos OS Evolved | =16.1-r4 | |
| Junos OS Evolved | =16.1-r5 | |
| Junos OS Evolved | =16.2 | |
| Junos OS Evolved | =16.2-r1 | |
| Junos OS Evolved | =16.2-r3 | |
| Junos OS Evolved | =17.1 | |
| Junos OS Evolved | =17.1-r1 | |
| Junos OS Evolved | =17.1-r3 | |
| Junos OS Evolved | =17.2 | |
| Junos OS Evolved | =17.2-r1 | |
| Junos OS Evolved | =17.2-r2 | |
| Junos OS Evolved | =17.3 | |
| Junos OS Evolved | =17.3-r1 |
Remedy
The following software releases have been updated to resolve this specific issue: 12.1X46-D77, 12.3R12-S10,12.3X48-D60, 15.1R7, 15.1X49-D120, 15.1X53-D234, 15.1X53-D470, 15.1X53-D495, 15.1X53-D59, 15.1X53-D67, 16.1R6, 16.2R2-S6, 16.2R3, 17.1R2-S6, 17.1R3, 17.2R3, 17.3R2, 17.4R1 and all subsequent releases.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2018-0062?
CVE-2018-0062 is classified as a Denial of Service vulnerability.
How do I fix CVE-2018-0062?
To remediate CVE-2018-0062, users should upgrade to Junos OS version 12.1X46-D77 or later, or any other unaffected version.
Which versions of Junos OS are affected by CVE-2018-0062?
CVE-2018-0062 affects Junos OS versions 12.1X46 before 12.1X46-D77 and other specified versions.
Can CVE-2018-0062 be exploited remotely?
Yes, CVE-2018-0062 can be exploited by a remote unauthenticated user.
What impact does CVE-2018-0062 have on users?
CVE-2018-0062 may prevent users from authenticating or performing J-Web operations.
- agent/references
- agent/type
- agent/weakness
- agent/severity
- agent/title
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/juniper
- canonical/junos os evolved
- version/junos os evolved/12.1x46
- version/junos os evolved/12.1x46-d10
- version/junos os evolved/12.1x46-d15
- version/junos os evolved/12.1x46-d20
- version/junos os evolved/12.1x46-d25
- version/junos os evolved/12.1x46-d30
- version/junos os evolved/12.1x46-d35
- version/junos os evolved/12.1x46-d40
- version/junos os evolved/12.1x46-d45
- version/junos os evolved/12.1x46-d50
- version/junos os evolved/12.1x46-d55
- version/junos os evolved/12.1x46-d60
- version/junos os evolved/12.1x46-d65
- version/junos os evolved/12.3
- version/junos os evolved/12.3-r1
- version/junos os evolved/12.3-r11
- version/junos os evolved/12.3-r2
- version/junos os evolved/12.3-r3
- version/junos os evolved/12.3-r4
- version/junos os evolved/12.3-r5
- version/junos os evolved/12.3-r6
- version/junos os evolved/12.3-r7
- version/junos os evolved/12.3-r8
- version/junos os evolved/12.3-r9
- version/junos os evolved/12.3x48
- version/junos os evolved/12.3x48-d10
- version/junos os evolved/12.3x48-d15
- version/junos os evolved/12.3x48-d20
- version/junos os evolved/12.3x48-d25
- version/junos os evolved/12.3x48-d30
- version/junos os evolved/12.3x48-d35
- version/junos os evolved/12.3x48-d40
- version/junos os evolved/12.3x48-d45
- version/junos os evolved/12.3x48-d50
- version/junos os evolved/12.3x48-d55
- version/junos os evolved/12.3x48-d60
- version/junos os evolved/15.1
- version/junos os evolved/15.1-f2
- version/junos os evolved/15.1-f3
- version/junos os evolved/15.1-f4
- version/junos os evolved/15.1-f5
- version/junos os evolved/15.1-f6
- version/junos os evolved/15.1-f7
- version/junos os evolved/15.1-r1
- version/junos os evolved/15.1-r2
- version/junos os evolved/15.1-r3
- version/junos os evolved/15.1-r4
- version/junos os evolved/15.1-r5
- version/junos os evolved/15.1-r6
- version/junos os evolved/15.1x49
- version/junos os evolved/15.1x49-d10
- version/junos os evolved/15.1x49-d100
- version/junos os evolved/15.1x49-d110
- version/junos os evolved/15.1x49-d20
- version/junos os evolved/15.1x49-d30
- version/junos os evolved/15.1x49-d35
- version/junos os evolved/15.1x49-d40
- version/junos os evolved/15.1x49-d45
- version/junos os evolved/15.1x49-d50
- version/junos os evolved/15.1x49-d55
- version/junos os evolved/15.1x49-d60
- version/junos os evolved/15.1x49-d65
- version/junos os evolved/15.1x49-d70
- version/junos os evolved/15.1x49-d75
- version/junos os evolved/15.1x49-d80
- version/junos os evolved/15.1x49-d90
- version/junos os evolved/15.1x53
- version/junos os evolved/15.1x53-d50
- version/junos os evolved/15.1x53-d51
- version/junos os evolved/15.1x53-d52
- version/junos os evolved/15.1x53-d55
- version/junos os evolved/15.1x53-d57
- version/junos os evolved/15.1x53-d58
- canonical/juniper ex2300-24t
- canonical/juniper ex3400
- version/junos os evolved/15.1x53-d10
- version/junos os evolved/15.1x53-d20
- version/junos os evolved/15.1x53-d21
- version/junos os evolved/15.1x53-d30
- version/junos os evolved/15.1x53-d32
- version/junos os evolved/15.1x53-d33
- version/junos os evolved/15.1x53-d34
- version/junos os evolved/15.1x53-d60
- version/junos os evolved/15.1x53-d61
- version/junos os evolved/15.1x53-d62
- version/junos os evolved/15.1x53-d63
- version/junos os evolved/15.1x53-d64
- version/junos os evolved/15.1x53-d65
- version/junos os evolved/15.1x53-d66
- canonical/juniper networks qfx-series
- version/junos os evolved/15.1x53-d210
- version/junos os evolved/15.1x53-d230
- version/junos os evolved/15.1x53-d231
- version/junos os evolved/15.1x53-d232
- canonical/juniper qfx5110
- canonical/juniper qfx5200-32c
- version/junos os evolved/15.1x53-d40
- version/junos os evolved/15.1x53-d45
- version/junos os evolved/15.1x53-d495
- canonical/juniper networks nfx-series
- version/junos os evolved/16.1
- version/junos os evolved/16.1-r1
- version/junos os evolved/16.1-r2
- version/junos os evolved/16.1-r3
- version/junos os evolved/16.1-r4
- version/junos os evolved/16.1-r5
- version/junos os evolved/16.2
- version/junos os evolved/16.2-r1
- version/junos os evolved/16.2-r3
- version/junos os evolved/17.1
- version/junos os evolved/17.1-r1
- version/junos os evolved/17.1-r3
- version/junos os evolved/17.2
- version/junos os evolved/17.2-r1
- version/junos os evolved/17.2-r2
- version/junos os evolved/17.3
- version/junos os evolved/17.3-r1