vulnerability

Juniper Junos OS: 2020-10 Security Bulletin: Junos OS: Memory leak leads to kernel crash (vmcore) due to SNMP polling (JSA11080) (CVE-2020-1683)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:N/A:C)	2020-10-15	2020-10-15	2022-03-21

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

2020-10-15

Added

2020-10-15

Modified

2022-03-21

Description

On Juniper Networks Junos OS devices, a specific SNMP OID poll causes a memory leak which over time leads to a kernel crash (vmcore). Prior to the kernel crash other processes might be impacted, such as failure to establish SSH connection to the device. The administrator can monitor the output of the following command to check if there is memory leak caused by this issue: user@device> show system virtual-memory | match "pfe_ipc|kmem" pfe_ipc 147 5K - 164352 16,32,64,8192

Solution

juniper-junos-os-upgrade-latest

References

CVE-2020-1683
https://attackerkb.com/topics/CVE-2020-1683
JUNIPER-JSA11080

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today