CVE-2020-1644
Description
On Juniper Networks Junos OS and Junos OS Evolved devices, the receipt of a specific BGP UPDATE packet causes an internal counter to be incremented incorrectly, which over time can lead to the routing protocols process (RPD) crash and restart. This issue affects both IBGP and EBGP multihop deployment in IPv4 or IPv6 network. This issue affects: Juniper Networks Junos OS: 17.2X75 versions prior to 17.2X75-D105.19; 17.3 versions prior to 17.3R3-S8; 17.4 versions prior to 17.4R2-S10, 17.4R3-S2; 18.1 versions prior to 18.1R3-S10; 18.2 versions prior to 18.2R2-S7, 18.2R3-S4; 18.2X75 versions prior to 18.2X75-D13, 18.2X75-D411.1, 18.2X75-D420.18, 18.2X75-D52.3, 18.2X75-D60; 18.3 versions prior to 18.3R2-S4, 18.3R3-S2; 18.4 versions prior to 18.4R1-S7, 18.4R2-S4, 18.4R3-S2; 19.1 versions prior to 19.1R1-S5, 19.1R2-S1, 19.1R3; 19.2 versions prior to 19.2R1-S5, 19.2R2; 19.3 versions prior to 19.3R2-S2, 19.3R3; 19.4 versions prior to 19.4R1-S2, 19.4R2. Juniper Networks Junos OS Evolved: any releases prior to 20.1R2-EVO. This issue does not affect Juniper Networks Junos OS releases prior to 17.3R1.
Risk Information
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2020-1644 are fixed in junos 17.2x75-d105.19 | NCM |
| Multiple Vulnerabilities are fixed in junos 17.3R3-S8 | NCM |
| Vulnerabilities CVE-2020-1644,CVE-2020-1655,CVE-2021-0245,CVE-2021-0273 are fixed in junos 17.4R2-S10 | NCM |
| Multiple Vulnerabilities are fixed in junos 18.1R3-S10 | NCM |
| Multiple Vulnerabilities are fixed in junos 18.2R2-S7 | NCM |
| Multiple Vulnerabilities are fixed in junos 18.3R2-S4 | NCM |
| Multiple Vulnerabilities are fixed in junos 18.4R1-S7 | NCM |
| Multiple Vulnerabilities are fixed in junos 19.1R1-S5 | NCM |
| Multiple Vulnerabilities are fixed in junos 19.2R1-S5 | NCM |
| Vulnerabilities CVE-2020-1644,CVE-2020-1649,CVE-2020-1655 are fixed in junos 19.3R2-S2 | NCM |
| Vulnerabilities CVE-2020-1640,CVE-2020-1644,CVE-2020-1648,CVE-2020-1653 are fixed in junos 19.4r1-s2 | NCM |
| Vulnerabilities CVE-2020-1644 are fixed in junos_os_evolved 19.2r1-s5 | NCM |
| Vulnerabilities CVE-2020-1644 are fixed in junos_os_evolved 20.18 | NCM |
| Improper Check or Handling of Exceptional Conditions Vulnerability (CVE-2020-1644) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704488 | Security Update for junos 9.2r1 |
| PATCH-1704509 | Security Update for junos_os_evolved 20.4R1-EVO. |
| PATCH-1704509 | Security Update for junos_os_evolved 20.4R1-EVO. |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234