CVE-2020-1600: Junos OS: A specific SNMP command can trigger a high CPU usage Denial of Service in the RPD daemon.
First published: Wed Jan 15 2020(Updated: )
In a Point-to-Multipoint (P2MP) Label Switched Path (LSP) scenario, an uncontrolled resource consumption vulnerability in the Routing Protocol Daemon (RPD) in Juniper Networks Junos OS allows a specific SNMP request to trigger an infinite loop causing a high CPU usage Denial of Service (DoS) condition. This issue affects both SNMP over IPv4 and IPv6. This issue affects: Juniper Networks Junos OS: 12.3X48 versions prior to 12.3X48-D90; 15.1 versions prior to 15.1R7-S6; 15.1X49 versions prior to 15.1X49-D200; 15.1X53 versions prior to 15.1X53-D238, 15.1X53-D592; 16.1 versions prior to 16.1R7-S5; 16.2 versions prior to 16.2R2-S11; 17.1 versions prior to 17.1R3-S1; 17.2 versions prior to 17.2R3-S2; 17.3 versions prior to 17.3R3-S7; 17.4 versions prior to 17.4R2-S4, 17.4R3; 18.1 versions prior to 18.1R3-S5; 18.2 versions prior to 18.2R3; 18.2X75 versions prior to 18.2X75-D50; 18.3 versions prior to 18.3R2; 18.4 versions prior to 18.4R2; 19.1 versions prior to 19.1R2.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper Junos | =12.3x48-d10 | |
| Juniper Junos | =12.3x48-d15 | |
| Juniper Junos | =12.3x48-d20 | |
| Juniper Junos | =12.3x48-d25 | |
| Juniper Junos | =12.3x48-d30 | |
| Juniper Junos | =12.3x48-d35 | |
| Juniper Junos | =12.3x48-d40 | |
| Juniper Junos | =12.3x48-d45 | |
| Juniper Junos | =12.3x48-d50 | |
| Juniper Junos | =12.3x48-d55 | |
| Juniper Junos | =12.3x48-d60 | |
| Juniper Junos | =12.3x48-d65 | |
| Juniper Junos | =12.3x48-d70 | |
| Juniper Junos | =12.3x48-d75 | |
| Juniper Junos | =12.3x48-d80 | |
| Juniper Junos | =12.3x48-d85 | |
| Juniper Junos | =15.1-r7 | |
| Juniper Junos | =15.1-r7-s1 | |
| Juniper Junos | =15.1-r7-s2 | |
| Juniper Junos | =15.1-r7-s3 | |
| Juniper Junos | =15.1-r7-s4 | |
| Juniper Junos | =15.1-r7-s5 | |
| Juniper Junos | =15.1x49-d10 | |
| Juniper Junos | =15.1x49-d150 | |
| Juniper Junos | =15.1x49-d20 | |
| Juniper Junos | =15.1x49-d30 | |
| Juniper Junos | =15.1x49-d35 | |
| Juniper Junos | =15.1x49-d40 | |
| Juniper Junos | =15.1x49-d45 | |
| Juniper Junos | =15.1x49-d50 | |
| Juniper Junos | =15.1x49-d55 | |
| Juniper Junos | =15.1x49-d60 | |
| Juniper Junos | =15.1x49-d65 | |
| Juniper Junos | =15.1x49-d70 | |
| Juniper Junos | =15.1x49-d75 | |
| Juniper Junos | =15.1x49-d80 | |
| Juniper Junos | =15.1x53-d20 | |
| Juniper Junos | =15.1x53-d21 | |
| Juniper Junos | =15.1x53-d210 | |
| Juniper Junos | =15.1x53-d25 | |
| Juniper Junos | =15.1x53-d30 | |
| Juniper Junos | =15.1x53-d31 | |
| Juniper Junos | =15.1x53-d32 | |
| Juniper Junos | =15.1x53-d33 | |
| Juniper Junos | =15.1x53-d34 | |
| Juniper Junos | =15.1x53-d40 | |
| Juniper Junos | =15.1x53-d45 | |
| Juniper Junos | =15.1x53-d470 | |
| Juniper Junos | =15.1x53-d495 | |
| Juniper Junos | =15.1x53-d56 | |
| Juniper Junos | =15.1x53-d60 | |
| Juniper Junos | =15.1x53-d61 | |
| Juniper Junos | =15.1x53-d62 | |
| Juniper Junos | =15.1x53-d63 | |
| Juniper Junos | =15.1x53-d65 | |
| Juniper Junos | =15.1x53-d70 | |
| Juniper Junos | =16.1 | |
| Juniper Junos | =16.1-r1 | |
| Juniper Junos | =16.1-r2 | |
| Juniper Junos | =16.1-r3 | |
| Juniper Junos | =16.1-r3-s10 | |
| Juniper Junos | =16.1-r4 | |
| Juniper Junos | =16.1-r5 | |
| Juniper Junos | =16.1-r5-s4 | |
| Juniper Junos | =16.1-r6 | |
| Juniper Junos | =16.1-r6-s1 | |
| Juniper Junos | =16.1-r7 | |
| Juniper Junos | =16.1-r7-s2 | |
| Juniper Junos | =16.1-r7-s3 | |
| Juniper Junos | =16.1-r7-s4 | |
| Juniper Junos | =16.2 | |
| Juniper Junos | =16.2-r1 | |
| Juniper Junos | =16.2-r2 | |
| Juniper Junos | =16.2-r2-s1 | |
| Juniper Junos | =16.2-r2-s10 | |
| Juniper Junos | =16.2-r2-s2 | |
| Juniper Junos | =16.2-r2-s5 | |
| Juniper Junos | =16.2-r2-s6 | |
| Juniper Junos | =16.2-r2-s7 | |
| Juniper Junos | =16.2-r2-s8 | |
| Juniper Junos | =16.2-r2-s9 | |
| Juniper Junos | =17.1 | |
| Juniper Junos | =17.1-r1 | |
| Juniper Junos | =17.1-r2-s1 | |
| Juniper Junos | =17.1-r2-s10 | |
| Juniper Junos | =17.1-r2-s2 | |
| Juniper Junos | =17.1-r2-s3 | |
| Juniper Junos | =17.1-r2-s4 | |
| Juniper Junos | =17.1-r2-s5 | |
| Juniper Junos | =17.1-r2-s6 | |
| Juniper Junos | =17.1-r2-s7 | |
| Juniper Junos | =17.1-r2-s9 | |
| Juniper Junos | =17.1-r3 | |
| Juniper Junos | =17.2 | |
| Juniper Junos | =17.2-r1-s2 | |
| Juniper Junos | =17.2-r1-s4 | |
| Juniper Junos | =17.2-r1-s7 | |
| Juniper Junos | =17.2-r1-s8 | |
| Juniper Junos | =17.2-r2-s6 | |
| Juniper Junos | =17.2-r2-s7 | |
| Juniper Junos | =17.2-r3-s1 | |
| Juniper Junos | =17.3 | |
| Juniper Junos | =17.3-r1-s1 | |
| Juniper Junos | =17.3-r2 | |
| Juniper Junos | =17.3-r2-s1 | |
| Juniper Junos | =17.3-r2-s2 | |
| Juniper Junos | =17.3-r3-s1 | |
| Juniper Junos | =17.3-r3-s2 | |
| Juniper Junos | =17.3-r3-s3 | |
| Juniper Junos | =17.3-r3-s4 | |
| Juniper Junos | =17.3-r3-s5 | |
| Juniper Junos | =17.3-r3-s6 | |
| Juniper Junos | =17.4 | |
| Juniper Junos | =17.4-r1 | |
| Juniper Junos | =17.4-r1-s1 | |
| Juniper Junos | =17.4-r1-s2 | |
| Juniper Junos | =17.4-r1-s4 | |
| Juniper Junos | =17.4-r1-s6 | |
| Juniper Junos | =17.4-r1-s7 | |
| Juniper Junos | =17.4-r2 | |
| Juniper Junos | =17.4-r2-s1 | |
| Juniper Junos | =17.4-r2-s3 | |
| Juniper Junos | =18.1 | |
| Juniper Junos | =18.1-r2 | |
| Juniper Junos | =18.1-r2-s1 | |
| Juniper Junos | =18.1-r2-s2 | |
| Juniper Junos | =18.1-r2-s4 | |
| Juniper Junos | =18.1-r3 | |
| Juniper Junos | =18.1-r3-s2 | |
| Juniper Junos | =18.1-r3-s3 | |
| Juniper Junos | =18.1-r3-s4 | |
| Juniper Junos | =18.2 | |
| Juniper Junos | =18.2-r1-s5 | |
| Juniper Junos | =18.2-r2-s1 | |
| Juniper Junos | =18.2-r2-s2 | |
| Juniper Junos | =18.2-r2-s3 | |
| Juniper Junos | =18.2-r2-s4 | |
| Juniper Junos | =18.2-r2-s5 | |
| Juniper Junos | =18.2-r2-s6 | |
| Juniper Junos | =18.2x75 | |
| Juniper Junos | =18.2x75-d20 | |
| Juniper Junos | =18.2x75-d40 | |
| Juniper Junos | =18.3 | |
| Juniper Junos | =18.3-r1 | |
| Juniper Junos | =18.3-r1-s1 | |
| Juniper Junos | =18.3-r1-s2 | |
| Juniper Junos | =18.3-r1-s3 | |
| Juniper Junos | =18.3-r2 | |
| Juniper Junos | =18.4 | |
| Juniper Junos | =18.4-r1 | |
| Juniper Junos | =18.4-r1-s1 | |
| Juniper Junos | =18.4-r1-s2 | |
| Juniper Junos | =18.4-r1-s3 | |
| Juniper Junos | =18.4-r1-s4 | |
| Juniper Junos | =18.4-r1-s5 | |
| Juniper Junos | =19.1-r1 |
Remedy
The following software releases have been updated to resolve this specific issue: 12.3X48-D90, 15.1X49-D200, 15.1R7-S6, 15.1X53-D238, 15.1X53-D592, 16.1R7-S5, 16.2R2-S11, 17.1R3-S1, 17.2R3-S2, 17.3R3-S7, 17.4R2-S4, 17.4R3, 18.1R3-S5, 18.2R3, 18.2X75-D50, 18.3R2, 18.4R2, 19.1R2, 19.2R1, and all subsequent releases.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-1600?
CVE-2020-1600 has been classified with a high severity level due to the potential for high CPU usage leading to a Denial of Service.
How do I fix CVE-2020-1600?
To mitigate CVE-2020-1600, it is recommended to install the latest patches provided by Juniper Networks for affected Junos OS versions.
What versions of Junos OS are affected by CVE-2020-1600?
CVE-2020-1600 affects several versions of Junos OS including 12.3x48, 15.1, and 16.1 through 18.4.
What type of vulnerability is CVE-2020-1600?
CVE-2020-1600 is classified as an uncontrolled resource consumption vulnerability affecting the Routing Protocol Daemon.
Is there a workaround for CVE-2020-1600?
Currently, the best approach is to apply the available patches from Juniper Networks as there are no official workarounds for CVE-2020-1600.
- agent/weakness
- agent/references
- agent/type
- agent/softwarecombine
- agent/author
- agent/severity
- agent/title
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/remedy
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/juniper
- canonical/juniper junos
- version/juniper junos/12.3x48-d10
- version/juniper junos/12.3x48-d15
- version/juniper junos/12.3x48-d20
- version/juniper junos/12.3x48-d25
- version/juniper junos/12.3x48-d30
- version/juniper junos/12.3x48-d35
- version/juniper junos/12.3x48-d40
- version/juniper junos/12.3x48-d45
- version/juniper junos/12.3x48-d50
- version/juniper junos/12.3x48-d55
- version/juniper junos/12.3x48-d60
- version/juniper junos/12.3x48-d65
- version/juniper junos/12.3x48-d70
- version/juniper junos/12.3x48-d75
- version/juniper junos/12.3x48-d80
- version/juniper junos/12.3x48-d85
- version/juniper junos/15.1-r7
- version/juniper junos/15.1-r7-s1
- version/juniper junos/15.1-r7-s2
- version/juniper junos/15.1-r7-s3
- version/juniper junos/15.1-r7-s4
- version/juniper junos/15.1-r7-s5
- version/juniper junos/15.1x49-d10
- version/juniper junos/15.1x49-d150
- version/juniper junos/15.1x49-d20
- version/juniper junos/15.1x49-d30
- version/juniper junos/15.1x49-d35
- version/juniper junos/15.1x49-d40
- version/juniper junos/15.1x49-d45
- version/juniper junos/15.1x49-d50
- version/juniper junos/15.1x49-d55
- version/juniper junos/15.1x49-d60
- version/juniper junos/15.1x49-d65
- version/juniper junos/15.1x49-d70
- version/juniper junos/15.1x49-d75
- version/juniper junos/15.1x49-d80
- version/juniper junos/15.1x53-d20
- version/juniper junos/15.1x53-d21
- version/juniper junos/15.1x53-d210
- version/juniper junos/15.1x53-d25
- version/juniper junos/15.1x53-d30
- version/juniper junos/15.1x53-d31
- version/juniper junos/15.1x53-d32
- version/juniper junos/15.1x53-d33
- version/juniper junos/15.1x53-d34
- version/juniper junos/15.1x53-d40
- version/juniper junos/15.1x53-d45
- version/juniper junos/15.1x53-d470
- version/juniper junos/15.1x53-d495
- version/juniper junos/15.1x53-d56
- version/juniper junos/15.1x53-d60
- version/juniper junos/15.1x53-d61
- version/juniper junos/15.1x53-d62
- version/juniper junos/15.1x53-d63
- version/juniper junos/15.1x53-d65
- version/juniper junos/15.1x53-d70
- version/juniper junos/16.1
- version/juniper junos/16.1-r1
- version/juniper junos/16.1-r2
- version/juniper junos/16.1-r3
- version/juniper junos/16.1-r3-s10
- version/juniper junos/16.1-r4
- version/juniper junos/16.1-r5
- version/juniper junos/16.1-r5-s4
- version/juniper junos/16.1-r6
- version/juniper junos/16.1-r6-s1
- version/juniper junos/16.1-r7
- version/juniper junos/16.1-r7-s2
- version/juniper junos/16.1-r7-s3
- version/juniper junos/16.1-r7-s4
- version/juniper junos/16.2
- version/juniper junos/16.2-r1
- version/juniper junos/16.2-r2
- version/juniper junos/16.2-r2-s1
- version/juniper junos/16.2-r2-s10
- version/juniper junos/16.2-r2-s2
- version/juniper junos/16.2-r2-s5
- version/juniper junos/16.2-r2-s6
- version/juniper junos/16.2-r2-s7
- version/juniper junos/16.2-r2-s8
- version/juniper junos/16.2-r2-s9
- version/juniper junos/17.1
- version/juniper junos/17.1-r1
- version/juniper junos/17.1-r2-s1
- version/juniper junos/17.1-r2-s10
- version/juniper junos/17.1-r2-s2
- version/juniper junos/17.1-r2-s3
- version/juniper junos/17.1-r2-s4
- version/juniper junos/17.1-r2-s5
- version/juniper junos/17.1-r2-s6
- version/juniper junos/17.1-r2-s7
- version/juniper junos/17.1-r2-s9
- version/juniper junos/17.1-r3
- version/juniper junos/17.2
- version/juniper junos/17.2-r1-s2
- version/juniper junos/17.2-r1-s4
- version/juniper junos/17.2-r1-s7
- version/juniper junos/17.2-r1-s8
- version/juniper junos/17.2-r2-s6
- version/juniper junos/17.2-r2-s7
- version/juniper junos/17.2-r3-s1
- version/juniper junos/17.3
- version/juniper junos/17.3-r1-s1
- version/juniper junos/17.3-r2
- version/juniper junos/17.3-r2-s1
- version/juniper junos/17.3-r2-s2
- version/juniper junos/17.3-r3-s1
- version/juniper junos/17.3-r3-s2
- version/juniper junos/17.3-r3-s3
- version/juniper junos/17.3-r3-s4
- version/juniper junos/17.3-r3-s5
- version/juniper junos/17.3-r3-s6
- version/juniper junos/17.4
- version/juniper junos/17.4-r1
- version/juniper junos/17.4-r1-s1
- version/juniper junos/17.4-r1-s2
- version/juniper junos/17.4-r1-s4
- version/juniper junos/17.4-r1-s6
- version/juniper junos/17.4-r1-s7
- version/juniper junos/17.4-r2
- version/juniper junos/17.4-r2-s1
- version/juniper junos/17.4-r2-s3
- version/juniper junos/18.1
- version/juniper junos/18.1-r2
- version/juniper junos/18.1-r2-s1
- version/juniper junos/18.1-r2-s2
- version/juniper junos/18.1-r2-s4
- version/juniper junos/18.1-r3
- version/juniper junos/18.1-r3-s2
- version/juniper junos/18.1-r3-s3
- version/juniper junos/18.1-r3-s4
- version/juniper junos/18.2
- version/juniper junos/18.2-r1-s5
- version/juniper junos/18.2-r2-s1
- version/juniper junos/18.2-r2-s2
- version/juniper junos/18.2-r2-s3
- version/juniper junos/18.2-r2-s4
- version/juniper junos/18.2-r2-s5
- version/juniper junos/18.2-r2-s6
- version/juniper junos/18.2x75
- version/juniper junos/18.2x75-d20
- version/juniper junos/18.2x75-d40
- version/juniper junos/18.3
- version/juniper junos/18.3-r1
- version/juniper junos/18.3-r1-s1
- version/juniper junos/18.3-r1-s2
- version/juniper junos/18.3-r1-s3
- version/juniper junos/18.3-r2
- version/juniper junos/18.4
- version/juniper junos/18.4-r1
- version/juniper junos/18.4-r1-s1
- version/juniper junos/18.4-r1-s2
- version/juniper junos/18.4-r1-s3
- version/juniper junos/18.4-r1-s4
- version/juniper junos/18.4-r1-s5
- version/juniper junos/19.1-r1