CVE-2021-0203: Junos OS: EX and QFX5K Series: Storm Control does not work as expected when Redundant Trunk Group is configured
First published: Fri Jan 15 2021(Updated: )
On Juniper Networks EX and QFX5K Series platforms configured with Redundant Trunk Group (RTG), Storm Control profile applied on the RTG interface might not take affect when it reaches the threshold condition. Storm Control enables the device to monitor traffic levels and to drop broadcast, multicast, and unknown unicast packets when a specified traffic level is exceeded, thus preventing packets from proliferating and degrading the LAN. Note: this issue does not affect EX2200, EX3300, EX4200, and EX9200 Series. This issue affects Juniper Networks Junos OS on EX Series and QFX5K Series: 15.1 versions prior to 15.1R7-S7; 16.1 versions prior to 16.1R7-S8; 17.2 versions prior to 17.2R3-S4; 17.3 versions prior to 17.3R3-S8; 17.4 versions prior to 17.4R2-S11, 17.4R3-S2; 18.1 versions prior to 18.1R3-S10; 18.2 versions prior to 18.2R3-S5; 18.3 versions prior to 18.3R2-S4, 18.3R3-S2; 18.4 versions prior to 18.4R2-S5, 18.4R3-S3; 19.1 versions prior to 19.1R2-S2, 19.1R3-S2; 19.2 versions prior to 19.2R1-S5, 19.2R2-S1, 19.2R3; 19.3 versions prior to 19.3R2-S4, 19.3R3; 19.4 versions prior to 19.4R1-S3, 19.4R2-S1, 19.4R3; 20.1 versions prior to 20.1R1-S2, 20.1R2.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper Junos | =15.1 | |
| Juniper Junos | =15.1-a1 | |
| Juniper Junos | =15.1-f | |
| Juniper Junos | =15.1-f1 | |
| Juniper Junos | =15.1-f2 | |
| Juniper Junos | =15.1-f2-s1 | |
| Juniper Junos | =15.1-f2-s2 | |
| Juniper Junos | =15.1-f2-s3 | |
| Juniper Junos | =15.1-f2-s4 | |
| Juniper Junos | =15.1-f3 | |
| Juniper Junos | =15.1-f4 | |
| Juniper Junos | =15.1-f5 | |
| Juniper Junos | =15.1-f5-s7 | |
| Juniper Junos | =15.1-f6 | |
| Juniper Junos | =15.1-f6-s1 | |
| Juniper Junos | =15.1-f6-s12 | |
| Juniper Junos | =15.1-f6-s2 | |
| Juniper Junos | =15.1-f6-s3 | |
| Juniper Junos | =15.1-f6-s4 | |
| Juniper Junos | =15.1-f6-s7 | |
| Juniper Junos | =15.1-f7 | |
| Juniper Junos | =15.1-r1 | |
| Juniper Junos | =15.1-r2 | |
| Juniper Junos | =15.1-r3 | |
| Juniper Junos | =15.1-r4 | |
| Juniper Junos | =15.1-r4-s7 | |
| Juniper Junos | =15.1-r4-s8 | |
| Juniper Junos | =15.1-r4-s9 | |
| Juniper Junos | =15.1-r5 | |
| Juniper Junos | =15.1-r5-s1 | |
| Juniper Junos | =15.1-r5-s5 | |
| Juniper Junos | =15.1-r5-s6 | |
| Juniper Junos | =15.1-r6 | |
| Juniper Junos | =15.1-r6-s1 | |
| Juniper Junos | =15.1-r6-s2 | |
| Juniper Junos | =15.1-r6-s6 | |
| Juniper Junos | =15.1-r7 | |
| Juniper Junos | =15.1-r7-s1 | |
| Juniper Junos | =15.1-r7-s2 | |
| Juniper Junos | =15.1-r7-s3 | |
| Juniper Junos | =15.1-r7-s4 | |
| Juniper Junos | =15.1-r7-s5 | |
| Juniper Junos | =15.1-r7-s6 | |
| Juniper Junos | =16.1 | |
| Juniper Junos | =16.1-r1 | |
| Juniper Junos | =16.1-r2 | |
| Juniper Junos | =16.1-r3 | |
| Juniper Junos | =16.1-r3-s10 | |
| Juniper Junos | =16.1-r3-s11 | |
| Juniper Junos | =16.1-r4 | |
| Juniper Junos | =16.1-r4-s12 | |
| Juniper Junos | =16.1-r4-s2 | |
| Juniper Junos | =16.1-r4-s3 | |
| Juniper Junos | =16.1-r4-s4 | |
| Juniper Junos | =16.1-r4-s6 | |
| Juniper Junos | =16.1-r5 | |
| Juniper Junos | =16.1-r5-s4 | |
| Juniper Junos | =16.1-r6-s1 | |
| Juniper Junos | =16.1-r6-s6 | |
| Juniper Junos | =16.1-r7 | |
| Juniper Junos | =16.1-r7-s2 | |
| Juniper Junos | =16.1-r7-s3 | |
| Juniper Junos | =16.1-r7-s4 | |
| Juniper Junos | =16.1-r7-s5 | |
| Juniper Junos | =16.1-r7-s6 | |
| Juniper Junos | =16.1-r7-s7 | |
| Juniper Junos | =17.2 | |
| Juniper Junos | =17.2-r1 | |
| Juniper Junos | =17.2-r1-s1 | |
| Juniper Junos | =17.2-r1-s2 | |
| Juniper Junos | =17.2-r1-s3 | |
| Juniper Junos | =17.2-r1-s4 | |
| Juniper Junos | =17.2-r1-s5 | |
| Juniper Junos | =17.2-r1-s7 | |
| Juniper Junos | =17.2-r1-s8 | |
| Juniper Junos | =17.2-r2 | |
| Juniper Junos | =17.2-r2-s11 | |
| Juniper Junos | =17.2-r2-s6 | |
| Juniper Junos | =17.2-r2-s7 | |
| Juniper Junos | =17.2-r3-s1 | |
| Juniper Junos | =17.2-r3-s2 | |
| Juniper Junos | =17.2-r3-s3 | |
| Juniper Junos | =17.4 | |
| Juniper Junos | =17.4-r1 | |
| Juniper Junos | =17.4-r1-s1 | |
| Juniper Junos | =17.4-r1-s2 | |
| Juniper Junos | =17.4-r1-s4 | |
| Juniper Junos | =17.4-r1-s5 | |
| Juniper Junos | =17.4-r1-s6 | |
| Juniper Junos | =17.4-r1-s7 | |
| Juniper Junos | =17.4-r2 | |
| Juniper Junos | =17.4-r2-s1 | |
| Juniper Junos | =17.4-r2-s10 | |
| Juniper Junos | =17.4-r2-s2 | |
| Juniper Junos | =17.4-r2-s3 | |
| Juniper Junos | =17.4-r2-s4 | |
| Juniper Junos | =17.4-r2-s5 | |
| Juniper Junos | =17.4-r2-s6 | |
| Juniper Junos | =17.4-r2-s7 | |
| Juniper Junos | =17.4-r2-s8 | |
| Juniper Junos | =17.4-r2-s9 | |
| Juniper Junos | =17.4-r3 | |
| Juniper Junos | =17.4-r3-s1 | |
| Juniper Junos | =18.1 | |
| Juniper Junos | =18.1-r1 | |
| Juniper Junos | =18.1-r2 | |
| Juniper Junos | =18.1-r2-s1 | |
| Juniper Junos | =18.1-r2-s2 | |
| Juniper Junos | =18.1-r2-s4 | |
| Juniper Junos | =18.1-r3 | |
| Juniper Junos | =18.1-r3-s1 | |
| Juniper Junos | =18.1-r3-s2 | |
| Juniper Junos | =18.1-r3-s3 | |
| Juniper Junos | =18.1-r3-s4 | |
| Juniper Junos | =18.1-r3-s6 | |
| Juniper Junos | =18.1-r3-s7 | |
| Juniper Junos | =18.1-r3-s8 | |
| Juniper Junos | =18.1-r3-s9 | |
| Juniper Junos | =18.2 | |
| Juniper Junos | =18.2-r1 | |
| Juniper Junos | =18.2-r1-s3 | |
| Juniper Junos | =18.2-r1-s4 | |
| Juniper Junos | =18.2-r1-s5 | |
| Juniper Junos | =18.2-r2 | |
| Juniper Junos | =18.2-r2-s1 | |
| Juniper Junos | =18.2-r2-s2 | |
| Juniper Junos | =18.2-r2-s3 | |
| Juniper Junos | =18.2-r2-s4 | |
| Juniper Junos | =18.2-r2-s5 | |
| Juniper Junos | =18.2-r2-s6 | |
| Juniper Junos | =18.2-r3 | |
| Juniper Junos | =18.2-r3-s1 | |
| Juniper Junos | =18.2-r3-s2 | |
| Juniper Junos | =18.2-r3-s3 | |
| Juniper Junos | =18.2-r3-s4 | |
| Juniper Junos | =18.3 | |
| Juniper Junos | =18.3-r1 | |
| Juniper Junos | =18.3-r1-s1 | |
| Juniper Junos | =18.3-r1-s2 | |
| Juniper Junos | =18.3-r1-s3 | |
| Juniper Junos | =18.3-r1-s5 | |
| Juniper Junos | =18.3-r1-s6 | |
| Juniper Junos | =18.3-r2 | |
| Juniper Junos | =18.3-r2-s1 | |
| Juniper Junos | =18.3-r2-s2 | |
| Juniper Junos | =18.3-r2-s3 | |
| Juniper Junos | =18.3-r3 | |
| Juniper Junos | =18.3-r3-s1 | |
| Juniper Junos | =18.4 | |
| Juniper Junos | =18.4-r1 | |
| Juniper Junos | =18.4-r1-s1 | |
| Juniper Junos | =18.4-r1-s2 | |
| Juniper Junos | =18.4-r1-s5 | |
| Juniper Junos | =18.4-r1-s6 | |
| Juniper Junos | =18.4-r2 | |
| Juniper Junos | =18.4-r2-s1 | |
| Juniper Junos | =18.4-r2-s2 | |
| Juniper Junos | =18.4-r2-s3 | |
| Juniper Junos | =18.4-r2-s4 | |
| Juniper Junos | =18.4-r3 | |
| Juniper Junos | =18.4-r3-s1 | |
| Juniper Junos | =18.4-r3-s2 | |
| Juniper Junos | =19.1 | |
| Juniper Junos | =19.1-r1 | |
| Juniper Junos | =19.1-r1-s1 | |
| Juniper Junos | =19.1-r1-s2 | |
| Juniper Junos | =19.1-r1-s3 | |
| Juniper Junos | =19.1-r1-s4 | |
| Juniper Junos | =19.1-r2 | |
| Juniper Junos | =19.1-r2-s1 | |
| Juniper Junos | =19.1-r3 | |
| Juniper Junos | =19.1-r3-s1 | |
| Juniper Junos | =19.2 | |
| Juniper Junos | =19.2-r1 | |
| Juniper Junos | =19.2-r1-s1 | |
| Juniper Junos | =19.2-r1-s2 | |
| Juniper Junos | =19.2-r1-s3 | |
| Juniper Junos | =19.2-r1-s4 | |
| Juniper Junos | =19.2-r2 | |
| Juniper Junos | =19.3 | |
| Juniper Junos | =19.3-r1 | |
| Juniper Junos | =19.3-r1-s1 | |
| Juniper Junos | =19.3-r2 | |
| Juniper Junos | =19.3-r2-s1 | |
| Juniper Junos | =19.3-r2-s2 | |
| Juniper Junos | =19.3-r2-s3 | |
| Juniper Junos | =19.4-r1 | |
| Juniper Junos | =19.4-r1-s1 | |
| Juniper Junos | =19.4-r1-s2 | |
| Juniper Junos | =19.4-r2 | |
| Juniper Junos | =20.1-r1 | |
| Juniper Junos | =20.1-r1-s1 | |
| Juniper EX2300-24T | ||
| Juniper EX2300-C | ||
| Juniper EX2300 | ||
| Juniper EX3400 | ||
| Juniper EX4300-24T | ||
| Juniper EX4300 | ||
| Juniper EX4600 | ||
| Juniper EX4650 | ||
| Juniper EX9250 | ||
| Juniper QFX5100 | ||
| Juniper QFX5110 | ||
| Juniper QFX5120 | ||
| Juniper QFX5130 | ||
| Juniper QFX5200-48Y | ||
| Juniper QFX5210-64C | ||
| Juniper QFX5220 |
Remedy
The following software releases have been updated to resolve this specific issue: 15.1R7-S7, 16.1R7-S8, 17.2R3-S4, 17.3R3-S8, 17.4R2-S11, 17.4R3-S2, 18.1R3-S10, 18.2R3-S5, 18.3R2-S4, 18.3R3-S2, 18.4R2-S5, 18.4R3-S3, 19.1R2-S2, 19.1R3-S2, 19.2R1-S5, 19.2R2-S1, 19.2R3, 19.3R2-S4, 19.3R3, 19.4R1-S3, 19.4R2-S1, 19.4R3, 20.1R1-S2, 20.1R2, 20.2R1 and all subsequent releases.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2021-0203?
The severity of CVE-2021-0203 is rated as high with a CVSS score of 8.6.
How do I fix CVE-2021-0203 vulnerability?
To mitigate CVE-2021-0203, apply the necessary patches provided by Juniper Networks.
What software versions are affected by CVE-2021-0203?
Juniper JUNOS versions 15.1 up to version 20.1 are affected by CVE-2021-0203.
What is the Common Weakness Enumeration (CWE) for CVE-2021-0203?
CVE-2021-0203 is associated with CWE-794.
- agent/type
- agent/softwarecombine
- agent/references
- agent/severity
- agent/author
- agent/title
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/juniper
- canonical/juniper junos
- version/juniper junos/15.1
- version/juniper junos/15.1-a1
- version/juniper junos/15.1-f
- version/juniper junos/15.1-f1
- version/juniper junos/15.1-f2
- version/juniper junos/15.1-f2-s1
- version/juniper junos/15.1-f2-s2
- version/juniper junos/15.1-f2-s3
- version/juniper junos/15.1-f2-s4
- version/juniper junos/15.1-f3
- version/juniper junos/15.1-f4
- version/juniper junos/15.1-f5
- version/juniper junos/15.1-f5-s7
- version/juniper junos/15.1-f6
- version/juniper junos/15.1-f6-s1
- version/juniper junos/15.1-f6-s12
- version/juniper junos/15.1-f6-s2
- version/juniper junos/15.1-f6-s3
- version/juniper junos/15.1-f6-s4
- version/juniper junos/15.1-f6-s7
- version/juniper junos/15.1-f7
- version/juniper junos/15.1-r1
- version/juniper junos/15.1-r2
- version/juniper junos/15.1-r3
- version/juniper junos/15.1-r4
- version/juniper junos/15.1-r4-s7
- version/juniper junos/15.1-r4-s8
- version/juniper junos/15.1-r4-s9
- version/juniper junos/15.1-r5
- version/juniper junos/15.1-r5-s1
- version/juniper junos/15.1-r5-s5
- version/juniper junos/15.1-r5-s6
- version/juniper junos/15.1-r6
- version/juniper junos/15.1-r6-s1
- version/juniper junos/15.1-r6-s2
- version/juniper junos/15.1-r6-s6
- version/juniper junos/15.1-r7
- version/juniper junos/15.1-r7-s1
- version/juniper junos/15.1-r7-s2
- version/juniper junos/15.1-r7-s3
- version/juniper junos/15.1-r7-s4
- version/juniper junos/15.1-r7-s5
- version/juniper junos/15.1-r7-s6
- version/juniper junos/16.1
- version/juniper junos/16.1-r1
- version/juniper junos/16.1-r2
- version/juniper junos/16.1-r3
- version/juniper junos/16.1-r3-s10
- version/juniper junos/16.1-r3-s11
- version/juniper junos/16.1-r4
- version/juniper junos/16.1-r4-s12
- version/juniper junos/16.1-r4-s2
- version/juniper junos/16.1-r4-s3
- version/juniper junos/16.1-r4-s4
- version/juniper junos/16.1-r4-s6
- version/juniper junos/16.1-r5
- version/juniper junos/16.1-r5-s4
- version/juniper junos/16.1-r6-s1
- version/juniper junos/16.1-r6-s6
- version/juniper junos/16.1-r7
- version/juniper junos/16.1-r7-s2
- version/juniper junos/16.1-r7-s3
- version/juniper junos/16.1-r7-s4
- version/juniper junos/16.1-r7-s5
- version/juniper junos/16.1-r7-s6
- version/juniper junos/16.1-r7-s7
- version/juniper junos/17.2
- version/juniper junos/17.2-r1
- version/juniper junos/17.2-r1-s1
- version/juniper junos/17.2-r1-s2
- version/juniper junos/17.2-r1-s3
- version/juniper junos/17.2-r1-s4
- version/juniper junos/17.2-r1-s5
- version/juniper junos/17.2-r1-s7
- version/juniper junos/17.2-r1-s8
- version/juniper junos/17.2-r2
- version/juniper junos/17.2-r2-s11
- version/juniper junos/17.2-r2-s6
- version/juniper junos/17.2-r2-s7
- version/juniper junos/17.2-r3-s1
- version/juniper junos/17.2-r3-s2
- version/juniper junos/17.2-r3-s3
- version/juniper junos/17.4
- version/juniper junos/17.4-r1
- version/juniper junos/17.4-r1-s1
- version/juniper junos/17.4-r1-s2
- version/juniper junos/17.4-r1-s4
- version/juniper junos/17.4-r1-s5
- version/juniper junos/17.4-r1-s6
- version/juniper junos/17.4-r1-s7
- version/juniper junos/17.4-r2
- version/juniper junos/17.4-r2-s1
- version/juniper junos/17.4-r2-s10
- version/juniper junos/17.4-r2-s2
- version/juniper junos/17.4-r2-s3
- version/juniper junos/17.4-r2-s4
- version/juniper junos/17.4-r2-s5
- version/juniper junos/17.4-r2-s6
- version/juniper junos/17.4-r2-s7
- version/juniper junos/17.4-r2-s8
- version/juniper junos/17.4-r2-s9
- version/juniper junos/17.4-r3
- version/juniper junos/17.4-r3-s1
- version/juniper junos/18.1
- version/juniper junos/18.1-r1
- version/juniper junos/18.1-r2
- version/juniper junos/18.1-r2-s1
- version/juniper junos/18.1-r2-s2
- version/juniper junos/18.1-r2-s4
- version/juniper junos/18.1-r3
- version/juniper junos/18.1-r3-s1
- version/juniper junos/18.1-r3-s2
- version/juniper junos/18.1-r3-s3
- version/juniper junos/18.1-r3-s4
- version/juniper junos/18.1-r3-s6
- version/juniper junos/18.1-r3-s7
- version/juniper junos/18.1-r3-s8
- version/juniper junos/18.1-r3-s9
- version/juniper junos/18.2
- version/juniper junos/18.2-r1
- version/juniper junos/18.2-r1-s3
- version/juniper junos/18.2-r1-s4
- version/juniper junos/18.2-r1-s5
- version/juniper junos/18.2-r2
- version/juniper junos/18.2-r2-s1
- version/juniper junos/18.2-r2-s2
- version/juniper junos/18.2-r2-s3
- version/juniper junos/18.2-r2-s4
- version/juniper junos/18.2-r2-s5
- version/juniper junos/18.2-r2-s6
- version/juniper junos/18.2-r3
- version/juniper junos/18.2-r3-s1
- version/juniper junos/18.2-r3-s2
- version/juniper junos/18.2-r3-s3
- version/juniper junos/18.2-r3-s4
- version/juniper junos/18.3
- version/juniper junos/18.3-r1
- version/juniper junos/18.3-r1-s1
- version/juniper junos/18.3-r1-s2
- version/juniper junos/18.3-r1-s3
- version/juniper junos/18.3-r1-s5
- version/juniper junos/18.3-r1-s6
- version/juniper junos/18.3-r2
- version/juniper junos/18.3-r2-s1
- version/juniper junos/18.3-r2-s2
- version/juniper junos/18.3-r2-s3
- version/juniper junos/18.3-r3
- version/juniper junos/18.3-r3-s1
- version/juniper junos/18.4
- version/juniper junos/18.4-r1
- version/juniper junos/18.4-r1-s1
- version/juniper junos/18.4-r1-s2
- version/juniper junos/18.4-r1-s5
- version/juniper junos/18.4-r1-s6
- version/juniper junos/18.4-r2
- version/juniper junos/18.4-r2-s1
- version/juniper junos/18.4-r2-s2
- version/juniper junos/18.4-r2-s3
- version/juniper junos/18.4-r2-s4
- version/juniper junos/18.4-r3
- version/juniper junos/18.4-r3-s1
- version/juniper junos/18.4-r3-s2
- version/juniper junos/19.1
- version/juniper junos/19.1-r1
- version/juniper junos/19.1-r1-s1
- version/juniper junos/19.1-r1-s2
- version/juniper junos/19.1-r1-s3
- version/juniper junos/19.1-r1-s4
- version/juniper junos/19.1-r2
- version/juniper junos/19.1-r2-s1
- version/juniper junos/19.1-r3
- version/juniper junos/19.1-r3-s1
- version/juniper junos/19.2
- version/juniper junos/19.2-r1
- version/juniper junos/19.2-r1-s1
- version/juniper junos/19.2-r1-s2
- version/juniper junos/19.2-r1-s3
- version/juniper junos/19.2-r1-s4
- version/juniper junos/19.2-r2
- version/juniper junos/19.3
- version/juniper junos/19.3-r1
- version/juniper junos/19.3-r1-s1
- version/juniper junos/19.3-r2
- version/juniper junos/19.3-r2-s1
- version/juniper junos/19.3-r2-s2
- version/juniper junos/19.3-r2-s3
- version/juniper junos/19.4-r1
- version/juniper junos/19.4-r1-s1
- version/juniper junos/19.4-r1-s2
- version/juniper junos/19.4-r2
- version/juniper junos/20.1-r1
- version/juniper junos/20.1-r1-s1
- canonical/juniper ex2300-24t
- canonical/juniper ex2300-c
- canonical/juniper ex2300
- canonical/juniper ex3400
- canonical/juniper ex4300-24t
- canonical/juniper ex4300
- canonical/juniper ex4600
- canonical/juniper ex4650
- canonical/juniper ex9250
- canonical/juniper qfx5100
- canonical/juniper qfx5110
- canonical/juniper qfx5120
- canonical/juniper qfx5130
- canonical/juniper qfx5200-48y
- canonical/juniper qfx5210-64c
- canonical/juniper qfx5220