CVE-2019-0068
MEDIUMJuniper Junos OS on SRX Series DoS via Multicast Packet Processing
Title source: llmDescription
The SRX flowd process, responsible for packet forwarding, may crash and restart when processing specific multicast packets. By continuously sending the specific multicast packets, an attacker can repeatedly crash the flowd process causing a sustained Denial of Service. This issue affects Juniper Networks Junos OS on SRX Series: 12.3X48 versions prior to 12.3X48-D90; 15.1X49 versions prior to 15.1X49-D180; 17.3 versions; 17.4 versions prior to 17.4R2-S5, 17.4R3; 18.1 versions prior to 18.1R3-S6; 18.2 versions prior to 18.2R2-S4, 18.2R3; 18.3 versions prior to 18.3R2-S1, 18.3R3; 18.4 versions prior to 18.4R2; 19.1 versions prior to 19.1R1-S1, 19.1R2.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kb.juniper.net/JSA10968
Scores
CVSS v3
6.5
EPSS
0.0028
EPSS Percentile
51.2%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-754
Status
published
Products (4)
juniper/junos
12.3x48 d10 (16 CPE variants)
juniper/junos
15.1x49 d10 (22 CPE variants)
juniper/junos
17.3 (10 CPE variants)
juniper/junos
17.4 (2 CPE variants)
Published
Oct 09, 2019
Tracked Since
Feb 18, 2026