medium
5.3
CWE
770
Advisory Published
Updated

CVE-2019-0005

First published: Tue Jan 15 2019(Updated: )

On EX2300, EX3400, EX4600, QFX3K and QFX5K series, firewall filter configuration cannot perform packet matching on any IPv6 extension headers. This issue may allow IPv6 packets that should have been blocked to be forwarded. IPv4 packet filtering is unaffected by this vulnerability. Affected releases are Juniper Networks Junos OS on EX and QFX series;: 14.1X53 versions prior to 14.1X53-D47; 15.1 versions prior to 15.1R7; 15.1X53 versions prior to 15.1X53-D234 on QFX5200/QFX5110 series; 15.1X53 versions prior to 15.1X53-D591 on EX2300/EX3400 series; 16.1 versions prior to 16.1R7; 17.1 versions prior to 17.1R2-S10, 17.1R3; 17.2 versions prior to 17.2R3; 17.3 versions prior to 17.3R3; 17.4 versions prior to 17.4R2; 18.1 versions prior to 18.1R2.

Credit: sirt@juniper.net

Affected SoftwareAffected VersionHow to fix
Juniper JUNOS=14.1x53
Juniper JUNOS=14.1x53-d10
Juniper JUNOS=14.1x53-d15
Juniper JUNOS=14.1x53-d16
Juniper JUNOS=14.1x53-d25
Juniper JUNOS=14.1x53-d26
Juniper JUNOS=14.1x53-d27
Juniper JUNOS=14.1x53-d30
Juniper JUNOS=14.1x53-d35
Juniper JUNOS=14.1x53-d40
Juniper JUNOS=14.1x53-d42
Juniper JUNOS=14.1x53-d43
Juniper JUNOS=14.1x53-d44
Juniper JUNOS=14.1x53-d45
Juniper JUNOS=14.1x53-d46
Juniper Ex2300
Juniper Ex2300-c
Juniper Ex3400
Juniper EX4600
Juniper Ex4650
Juniper Qfx3500
Juniper Qfx3600
Juniper Qfx5100
Juniper Qfx5110
Juniper Qfx5120
Juniper Qfx5200
Juniper Qfx5210
Juniper JUNOS=15.1
Juniper JUNOS=15.1-r1
Juniper JUNOS=15.1-r2
Juniper JUNOS=15.1-r3
Juniper JUNOS=15.1-r4
Juniper JUNOS=15.1-r5
Juniper JUNOS=15.1-r6
Juniper JUNOS=15.1x53
Juniper JUNOS=15.1x53-d20
Juniper JUNOS=15.1x53-d21
Juniper JUNOS=15.1x53-d30
Juniper JUNOS=15.1x53-d32
Juniper JUNOS=15.1x53-d33
Juniper JUNOS=15.1x53-d34
Juniper JUNOS=15.1x53-d50
Juniper JUNOS=15.1x53-d51
Juniper JUNOS=15.1x53-d52
Juniper JUNOS=15.1x53-d210
Juniper JUNOS=15.1x53-d230
Juniper JUNOS=15.1x53-d234
Juniper JUNOS=15.1x53-d55
Juniper JUNOS=15.1x53-d57
Juniper JUNOS=15.1x53-d58
Juniper JUNOS=15.1x53-d59
Juniper JUNOS=15.1x53-d590
Juniper JUNOS=16.1
Juniper JUNOS=16.1-r1
Juniper JUNOS=16.1-r2
Juniper JUNOS=16.1-r3
Juniper JUNOS=16.1-r3-s10
Juniper JUNOS=16.1-r4
Juniper JUNOS=16.1-r5
Juniper JUNOS=16.1-r6
Juniper JUNOS=16.1-r6-s6
Juniper JUNOS=17.1
Juniper JUNOS=17.1-r1
Juniper JUNOS=17.1-r1-s7
Juniper JUNOS=17.1-r2
Juniper JUNOS=17.1-r2-s1
Juniper JUNOS=17.1-r2-s2
Juniper JUNOS=17.1-r2-s3
Juniper JUNOS=17.1-r2-s4
Juniper JUNOS=17.1-r2-s5
Juniper JUNOS=17.1-r2-s6
Juniper JUNOS=17.1-r2-s7
Juniper JUNOS=17.1-r2-s8
Juniper JUNOS=17.1-r2-s9
Juniper JUNOS=17.2
Juniper JUNOS=17.2-r1
Juniper JUNOS=17.2-r1-s7
Juniper JUNOS=17.2-r2
Juniper JUNOS=17.3
Juniper JUNOS=17.3-r1
Juniper JUNOS=17.3-r1-s1
Juniper JUNOS=17.3-r1-s4
Juniper JUNOS=17.3-r2
Juniper JUNOS=17.3-r2-s1
Juniper JUNOS=17.3-r2-s2
Juniper JUNOS=17.3-r2-s3
Juniper JUNOS=17.3-r2-s4
Juniper JUNOS=17.3-r2-s5
Juniper Gfx3600
Juniper JUNOS=17.4
Juniper JUNOS=17.4-r1
Juniper JUNOS=17.4-r1-s1
Juniper JUNOS=17.4-r1-s2
Juniper JUNOS=17.4-r1-s3
Juniper JUNOS=17.4-r1-s4
Juniper JUNOS=17.4-r1-s5
Juniper JUNOS=17.4-r1-s6
Juniper JUNOS=17.4-r1-s7
Juniper JUNOS=18.1
Juniper JUNOS=18.1-r
Juniper JUNOS=18.1-r1

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203