CVE-2019-0059

HIGH

Juniper Junos - Memory Leak

Title source: rule

Description

A memory leak vulnerability in the of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by sending specific commands from a peered BGP host and having those BGP states delivered to the vulnerable device. This issue affects: Juniper Networks Junos OS: 18.1 versions prior to 18.1R2-S4, 18.1R3-S1; 18.1X75 all versions. Versions before 18.1R1 are not affected.

References (1)

[Vendor Advisory] https://kb.juniper.net/JSA10957

Scores

CVSS v3 7.5

EPSS 0.0039

EPSS Percentile 59.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401 CWE-400

Status published

Affected Products (6)

juniper/junos

Timeline

Published Oct 09, 2019

Tracked Since Feb 18, 2026