What is CVE-2019-0041?

CVE-2019-0041 is a vulnerability found in Juniper Networks Junos OS 18.2 versions prior to 18.2R1-S2, 18.2R2 on EX4300-MP Series devices. It allows transit network traffic to reach the control plane via loopback interface (lo0).

How does CVE-2019-0041 affect Juniper EX4300-MP Series devices?

CVE-2019-0041 affects Juniper EX4300-MP Series devices by allowing transit network traffic to reach the control plane via the loopback interface (lo0), which can cause the device to fail to forward such traffic.

What is the severity of CVE-2019-0041?

The severity of CVE-2019-0041 is high with a severity score of 8.6.

How can I fix CVE-2019-0041 on Juniper networks Junos OS 18.2 devices?

To fix CVE-2019-0041 on Juniper Networks Junos OS 18.2 devices, it is recommended to upgrade to versions 18.2R1-S2 or 18.2R2.

Is Juniper EX4300-MP vulnerable to CVE-2019-0041?

No, Juniper EX4300-MP devices are not vulnerable to CVE-2019-0041.

Vulnerability/
CVE-2019-0041

high

8.6

CWE

284

10/4/2019

16/9/2024

CVE-2019-0041: Junos OS: EX4300-MP Series: IP transit traffic can reach the control plane via loopback interface.

First published: Wed Apr 10 2019(Updated: )

On EX4300-MP Series devices with any lo0 filters applied, transit network traffic may reach the control plane via loopback interface (lo0). The device may fail to forward such traffic. This issue affects Juniper Networks Junos OS 18.2 versions prior to 18.2R1-S2, 18.2R2 on EX4300-MP Series. This issue does not affect any other EX series devices.

Credit: sirt@juniper.net

Affected Software	Affected Version	How to fix
Junos OS Evolved	=18.2
Junos OS Evolved	=18.2-r1
Juniper EX4300

Remedy

The following software releases have been updated to resolve this specific issue: 18.2R1-S2, 18.2R2, 18.3R1, and all subsequent releases.

Never miss a vulnerability like this again

Reference Links

https://kb.juniper.net/JSA10933

Frequently Asked Questions

What is CVE-2019-0041?
CVE-2019-0041 is a vulnerability found in Juniper Networks Junos OS 18.2 versions prior to 18.2R1-S2, 18.2R2 on EX4300-MP Series devices. It allows transit network traffic to reach the control plane via loopback interface (lo0).
How does CVE-2019-0041 affect Juniper EX4300-MP Series devices?
CVE-2019-0041 affects Juniper EX4300-MP Series devices by allowing transit network traffic to reach the control plane via the loopback interface (lo0), which can cause the device to fail to forward such traffic.
What is the severity of CVE-2019-0041?
The severity of CVE-2019-0041 is high with a severity score of 8.6.
How can I fix CVE-2019-0041 on Juniper networks Junos OS 18.2 devices?
To fix CVE-2019-0041 on Juniper Networks Junos OS 18.2 devices, it is recommended to upgrade to versions 18.2R1-S2 or 18.2R2.
Is Juniper EX4300-MP vulnerable to CVE-2019-0041?
No, Juniper EX4300-MP devices are not vulnerable to CVE-2019-0041.

agent/type
agent/weakness
agent/severity
agent/title
agent/author
agent/references
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/remedy
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/juniper
canonical/junos os evolved
version/junos os evolved/18.2
version/junos os evolved/18.2-r1
canonical/juniper ex4300

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.