Security Warnings

Classification
These posts contain security warnings, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

Juniper Updates

42

Warning Date: 15 October, 2020

Severity Level ● High

Warning Number: 2020-1931

Target Sector: All

Description:

Juniper has released a security update to address a vulnerability in the following product:

  • Junos OS
    • 18.4
    • 19.1
    • 19.2
    • 19.3
    • 19.4
    • 17.3
    • 17.4
    • 18.1
    • 18.2
    • 18.3
    • 20.1
    • 12.3X48
    • 15.1X49
    • 18.2X75
    • 20.1R2-EVO
    • 20.2R1-EVO
    • 17.2X75
    • 15.1
    • 15.1X53
    • 16.1
    • 20.2
    • prior to 20.2R1
  • Juniper Identity Management System
  • Juniper Networks SBR Carrier
    • all versions prior to 8.5.0-R17
    • 8.6.0 versions prior to 8.6.0-R12
  • Juniper Secure Analytics
  • Junos Space
  • Junos Space Security Director
  • Contrail Networking

Threats:

Attacker could exploit these vulnerabilities by doing the following:

  • Bypass of a protection mechanism
  • Application crash
  • Memory corruption
  • Cross-site scripting (XSS)
  • Denial of service attack (DoS)

Best practice and Recommendations:

The CERT team encourages users to review Juniper security advisory and apply the necessary updates:

Last updated at 15 October, 2020