Description
An Improper Check for Unusual or Exceptional Conditions in Juniper Networks Junos OS Evolved may cause the stateless firewall filter configuration which uses the action 'policer' in certain combinations with other options to not take effect. An administrator can use the following CLI command to see the failures with filter configuration: user@device> show log kfirewall-agent.log | match ERROR Jul 23 14:16:03 ERROR: filter not supported This issue affects Juniper Networks Junos OS Evolved: Versions 19.1R1-EVO and above prior to 20.3R1-S2-EVO, 20.3R2-EVO. This issue does not affect Juniper Networks Junos OS.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://kb.juniper.net/JSA11120
Scores
CVSS v3
5.8
EPSS
0.0019
EPSS Percentile
40.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Details
CWE
CWE-754
Status
published
Products (6)
juniper/junos_os_evolved
19.1 r1 (2 CPE variants)
juniper/junos_os_evolved
19.2 r1 (2 CPE variants)
juniper/junos_os_evolved
19.3 r1 (2 CPE variants)
juniper/junos_os_evolved
20.1 r1 (2 CPE variants)
juniper/junos_os_evolved
20.2 r1 (2 CPE variants)
juniper/junos_os_evolved
20.3 r1 (2 CPE variants)
Published
Apr 22, 2021
Tracked Since
Feb 18, 2026