What is the severity of CVE-2019-0015?

CVE-2019-0015 is classified as a high severity vulnerability due to its potential impact on the security of dynamic VPN connections.

How do I fix CVE-2019-0015?

To fix CVE-2019-0015, you should update your Juniper JUNOS software to the latest patched version that addresses this vulnerability.

Who is affected by CVE-2019-0015?

CVE-2019-0015 affects Juniper SRX Series Service Gateways running specific versions of JUNOS.

What is the primary impact of CVE-2019-0015?

The primary impact of CVE-2019-0015 is that it allows deleted dynamic VPN users to reconnect until the device is rebooted.

Is there any workaround for CVE-2019-0015?

Currently, there are no recommended workarounds for CVE-2019-0015; updating to a secure version is necessary.

Vulnerability/
CVE-2019-0015

medium

5.5

CWE

613

15/1/2019

16/9/2024

CVE-2019-0015: Junos OS: SRX Series: Deleted dynamic VPN users are allowed to establish VPN connections until reboot

First published: Tue Jan 15 2019(Updated: )

A vulnerability in the SRX Series Service Gateway allows deleted dynamic VPN users to establish dynamic VPN connections until the device is rebooted. A deleted dynamic VPN connection should be immediately disallowed from establishing new VPN connections. Due to an error in token caching, deleted users are allowed to connect once a previously successful dynamic VPN connection has been established. A reboot is required to clear the cached authentication token. Affected releases are Junos OS on SRX Series: 12.3X48 versions prior to 12.3X48-D75; 15.1X49 versions prior to 15.1X49-D150; 17.3 versions prior to 17.3R3; 17.4 versions prior to 17.4R2; 18.1 versions prior to 18.1R3; 18.2 versions prior to 18.2R2.

Credit: sirt@juniper.net

Affected Software	Affected Version	How to fix
Junos OS Evolved	=12.3x48
Junos OS Evolved	=12.3x48-d10
Junos OS Evolved	=12.3x48-d100
Junos OS Evolved	=12.3x48-d15
Junos OS Evolved	=12.3x48-d20
Junos OS Evolved	=12.3x48-d25
Junos OS Evolved	=12.3x48-d30
Junos OS Evolved	=12.3x48-d35
Junos OS Evolved	=12.3x48-d40
Junos OS Evolved	=12.3x48-d45
Junos OS Evolved	=12.3x48-d50
Junos OS Evolved	=12.3x48-d51
Junos OS Evolved	=12.3x48-d55
Junos OS Evolved	=12.3x48-d60
Junos OS Evolved	=12.3x48-d65
Junos OS Evolved	=12.3x48-d66
Junos OS Evolved	=12.3x48-d70
Junos OS Evolved	=15.1x49
Junos OS Evolved	=15.1x49-d10
Junos OS Evolved	=15.1x49-d100
Junos OS Evolved	=15.1x49-d110
Junos OS Evolved	=15.1x49-d120
Junos OS Evolved	=15.1x49-d130
Junos OS Evolved	=15.1x49-d131
Junos OS Evolved	=15.1x49-d140
Junos OS Evolved	=15.1x49-d15
Junos OS Evolved	=15.1x49-d20
Junos OS Evolved	=15.1x49-d25
Junos OS Evolved	=15.1x49-d30
Junos OS Evolved	=15.1x49-d35
Junos OS Evolved	=15.1x49-d40
Junos OS Evolved	=15.1x49-d45
Junos OS Evolved	=15.1x49-d50
Junos OS Evolved	=15.1x49-d55
Junos OS Evolved	=15.1x49-d60
Junos OS Evolved	=15.1x49-d65
Junos OS Evolved	=15.1x49-d70
Junos OS Evolved	=15.1x49-d75
Junos OS Evolved	=15.1x49-d80
Junos OS Evolved	=15.1x49-d90
Junos OS Evolved	=17.3
Junos OS Evolved	=17.3-r1
Junos OS Evolved	=17.3-r1-s1
Junos OS Evolved	=17.3-r1-s4
Junos OS Evolved	=17.3-r2
Junos OS Evolved	=17.3-r2-s1
Junos OS Evolved	=17.3-r2-s2
Junos OS Evolved	=17.3-r2-s3
Junos OS Evolved	=17.3-r2-s4
Junos OS Evolved	=17.3-r2-s5
Junos OS Evolved	=17.4
Junos OS Evolved	=17.4-r1
Junos OS Evolved	=17.4-r1-s1
Junos OS Evolved	=17.4-r1-s2
Junos OS Evolved	=17.4-r1-s3
Junos OS Evolved	=17.4-r1-s4
Junos OS Evolved	=17.4-r1-s5
Junos OS Evolved	=17.4-r1-s6
Junos OS Evolved	=17.4-r1-s7
Junos OS Evolved	=18.1
Junos OS Evolved	=18.1-r
Junos OS Evolved	=18.1-r1
Junos OS Evolved	=18.1-r2
Junos OS Evolved	=18.1-r2-s1
Junos OS Evolved	=18.1-r2-s2
Junos OS Evolved	=18.1-r2-s4
Junos OS Evolved	=18.2
Junos OS Evolved	=18.2-r
Junos OS Evolved	=18.2-r1
Junos OS Evolved	=18.2-r1
Junos OS Evolved	=18.2-r1-s2
Junos OS Evolved	=18.2-r1-s3
Junos OS Evolved	=18.2-r1-s4
Junos OS Evolved	=18.2-r1-s5
Juniper SRX100
Juniper SRX110
Juniper SRX1400
Juniper SRX1500
Juniper SRX210
Juniper SRX220
Juniper SRX240
Juniper SRX300
Juniper SRX320
Juniper SRX340
Juniper SRX3400
Juniper SRX345
Juniper SRX3600
Juniper SRX380
Juniper SRX4000
Juniper SRX4100
Juniper SRX5400
Juniper SRX550
Juniper SRX5600
Juniper SRX5800
Juniper SRX650

Remedy

The following software releases have been updated to resolve this specific issue: Junos OS 12.3X48-D75, 15.1X49-D150, 17.3R3, 17.4R2, 18.1R3, 18.2R2, 18.3R1, and all subsequent releases.

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2019-0015?
CVE-2019-0015 is classified as a high severity vulnerability due to its potential impact on the security of dynamic VPN connections.
How do I fix CVE-2019-0015?
To fix CVE-2019-0015, you should update your Juniper JUNOS software to the latest patched version that addresses this vulnerability.
Who is affected by CVE-2019-0015?
CVE-2019-0015 affects Juniper SRX Series Service Gateways running specific versions of JUNOS.
What is the primary impact of CVE-2019-0015?
The primary impact of CVE-2019-0015 is that it allows deleted dynamic VPN users to reconnect until the device is rebooted.
Is there any workaround for CVE-2019-0015?
Currently, there are no recommended workarounds for CVE-2019-0015; updating to a secure version is necessary.

agent/references
agent/type
agent/weakness
agent/severity
agent/title
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/remedy
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/juniper
canonical/junos os evolved
version/junos os evolved/12.3x48
version/junos os evolved/12.3x48-d10
version/junos os evolved/12.3x48-d100
version/junos os evolved/12.3x48-d15
version/junos os evolved/12.3x48-d20
version/junos os evolved/12.3x48-d25
version/junos os evolved/12.3x48-d30
version/junos os evolved/12.3x48-d35
version/junos os evolved/12.3x48-d40
version/junos os evolved/12.3x48-d45
version/junos os evolved/12.3x48-d50
version/junos os evolved/12.3x48-d51
version/junos os evolved/12.3x48-d55
version/junos os evolved/12.3x48-d60
version/junos os evolved/12.3x48-d65
version/junos os evolved/12.3x48-d66
version/junos os evolved/12.3x48-d70
version/junos os evolved/15.1x49
version/junos os evolved/15.1x49-d10
version/junos os evolved/15.1x49-d100
version/junos os evolved/15.1x49-d110
version/junos os evolved/15.1x49-d120
version/junos os evolved/15.1x49-d130
version/junos os evolved/15.1x49-d131
version/junos os evolved/15.1x49-d140
version/junos os evolved/15.1x49-d15
version/junos os evolved/15.1x49-d20
version/junos os evolved/15.1x49-d25
version/junos os evolved/15.1x49-d30
version/junos os evolved/15.1x49-d35
version/junos os evolved/15.1x49-d40
version/junos os evolved/15.1x49-d45
version/junos os evolved/15.1x49-d50
version/junos os evolved/15.1x49-d55
version/junos os evolved/15.1x49-d60
version/junos os evolved/15.1x49-d65
version/junos os evolved/15.1x49-d70
version/junos os evolved/15.1x49-d75
version/junos os evolved/15.1x49-d80
version/junos os evolved/15.1x49-d90
version/junos os evolved/17.3
version/junos os evolved/17.3-r1
version/junos os evolved/17.3-r1-s1
version/junos os evolved/17.3-r1-s4
version/junos os evolved/17.3-r2
version/junos os evolved/17.3-r2-s1
version/junos os evolved/17.3-r2-s2
version/junos os evolved/17.3-r2-s3
version/junos os evolved/17.3-r2-s4
version/junos os evolved/17.3-r2-s5
version/junos os evolved/17.4
version/junos os evolved/17.4-r1
version/junos os evolved/17.4-r1-s1
version/junos os evolved/17.4-r1-s2
version/junos os evolved/17.4-r1-s3
version/junos os evolved/17.4-r1-s4
version/junos os evolved/17.4-r1-s5
version/junos os evolved/17.4-r1-s6
version/junos os evolved/17.4-r1-s7
version/junos os evolved/18.1
version/junos os evolved/18.1-r
version/junos os evolved/18.1-r1
version/junos os evolved/18.1-r2
version/junos os evolved/18.1-r2-s1
version/junos os evolved/18.1-r2-s2
version/junos os evolved/18.1-r2-s4
version/junos os evolved/18.2
version/junos os evolved/18.2-r
version/junos os evolved/18.2-r1
version/junos os evolved/18.2-r1-s2
version/junos os evolved/18.2-r1-s3
version/junos os evolved/18.2-r1-s4
version/junos os evolved/18.2-r1-s5
canonical/juniper srx100
canonical/juniper srx110
canonical/juniper srx1400
canonical/juniper srx1500
canonical/juniper srx210
canonical/juniper srx220
canonical/juniper srx240
canonical/juniper srx300
canonical/juniper srx320
canonical/juniper srx340
canonical/juniper srx3400
canonical/juniper srx345
canonical/juniper srx3600
canonical/juniper srx380
canonical/juniper srx4000
canonical/juniper srx4100
canonical/juniper srx5400
canonical/juniper srx550
canonical/juniper srx5600
canonical/juniper srx5800
canonical/juniper srx650