Home

CVE-2020-1641

Description

A Race Condition vulnerability in Juniper Networks Junos OS LLDP implementation allows an attacker to cause LLDP to crash leading to a Denial of Service (DoS). This issue occurs when crafted LLDP packets are received by the device from an adjacent device. Multiple LACP flaps will occur after LLDP crashes. An indicator of compromise is to evaluate log file details for lldp with RLIMIT. Intervention should occur before 85% threshold of used KB versus maximum available KB memory is reached. show log messages | match RLIMIT | match lldp | last 20 Matching statement is /kernel: %KERNEL-[number]: Process ([pid #],lldpd) has exceeded 85% of RLIMIT_DATA: with [] as variable data to evaluate for. This issue affects: Juniper Networks Junos OS: 12.3 versions prior to 12.3R12-S15; 12.3X48 versions prior to 12.3X48-D95; 15.1 versions prior to 15.1R7-S6; 15.1X49 versions prior to 15.1X49-D200; 15.1X53 versions prior to 15.1X53-D593; 16.1 versions prior to 16.1R7-S7; 17.1 versions prior to 17.1R2-S11, 17.1R3-S2; 17.2 versions prior to 17.2R1-S9, 17.2R3-S3; 17.3 versions prior to 17.3R2-S5, 17.3R3-S6; 17.4 versions prior to 17.4R2-S4, 17.4R3; 18.1 versions prior to 18.1R3-S5; 18.2 versions prior to 18.2R2-S7, 18.2R3; 18.2X75 versions prior to 18.2X75-D12, 18.2X75-D33, 18.2X75-D50, 18.2X75-D420; 18.3 versions prior to 18.3R1-S7, 18.3R2-S3, 18.3R3; 18.4 versions prior to 18.4R1-S5, 18.4R2; 19.1 versions prior to 19.1R1-S4, 19.1R2.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.063

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2020-1607,CVE-2020-1639,CVE-2020-1641,CVE-2020-1656 are fixed in junos 12.3R12-S15NCM
Multiple Vulnerabilities are fixed in junos 15.1R7-S6NCM
Multiple Vulnerabilities are fixed in junos 16.1R7-S7NCM
Multiple Vulnerabilities are fixed in junos 17.1r2-s11NCM
Multiple Vulnerabilities are fixed in junos 17.2r1-s9NCM
Vulnerabilities CVE-2020-1604,CVE-2020-1607,CVE-2020-1608,CVE-2020-1641 are fixed in junos 17.3r2-s5NCM
Vulnerabilities CVE-2020-1600,CVE-2020-1641 are fixed in junos 17.4r2-s4NCM
Multiple Vulnerabilities are fixed in junos 18.1R3-S5NCM
Multiple Vulnerabilities are fixed in junos 18.2R2-S7NCM
Multiple Vulnerabilities are fixed in junos 18.3R1-S7NCM
Multiple Vulnerabilities are fixed in junos 18.4r1-s5NCM
Vulnerabilities CVE-2020-1606,CVE-2020-1641,CVE-2020-1649 are fixed in junos 19.1r1-s4NCM
Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition) Vulnerability (CVE-2020-1641)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1
PATCH-1704488Security Update for junos 9.2r1

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234