Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2021-0286

Improper Check or Handling of Exceptional Conditions

Published: Jul 15, 2021 | Modified: Nov 21, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.8 HIGH
AV:N/AC:L/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2021-0286
CWEhttps://cwe.mitre.org/data/definitions/703.html

A vulnerability in the handling of exceptional conditions in Juniper Networks Junos OS Evolved (EVO) allows an attacker to send specially crafted packets to the device, causing the Advanced Forwarding Toolkit manager (evo-aftmand-bt or evo-aftmand-zx) process to crash and restart, impacting all traffic going through the FPC, resulting in a Denial of Service (DoS). Continued receipt and processing of these packets will create a sustained Denial of Service (DoS) condition. Following messages will be logged prior to the crash: Feb 2 10:14:39 fpc0 evo-aftmand-bt[16263]: [Error] Nexthop: Failed to get fwd nexthop for nexthop:32710470974358 label:1089551617 for session:18 probe:35 Feb 2 10:14:39 fpc0 evo-aftmand-bt[16263]: [Error] Nexthop: Failed to get fwd nexthop for nexthop:19241453497049 label:1089551617 for session:18 probe:37 Feb 2 10:14:39 fpc0 evo-aftmand-bt[16263]: [Error] Nexthop: Failed to get fwd nexthop for nexthop:19241453497049 label:1089551617 for session:18 probe:44 Feb 2 10:14:39 fpc0 evo-aftmand-bt[16263]: [Error] Nexthop: Failed to get fwd nexthop for nexthop:32710470974358 label:1089551617 for session:18 probe:47 Feb 2 10:14:39 fpc0 audit[16263]: ANOM_ABEND auid=4294967295 uid=0 gid=0 ses=4294967295 pid=16263 comm=EvoAftManBt-mai exe=/usr/sbin/evo-aftmand-bt sig=11 Feb 2 10:14:39 fpc0 kernel: audit: type=1701 audit(1612260879.272:17): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=16263 comm=EvoAftManBt-mai exe=/usr/sbin/evo-aftmand-bt sig=1 This issue affects Juniper Networks Junos OS Evolved: All versions prior to 20.4R2-EVO; 21.1 versions prior to 21.1R2-EVO.

Weakness

The product does not properly anticipate or handle exceptional conditions that rarely occur during normal operation of the product.

Affected Software

Name Vendor Start Version End Version
Junos_os_evolved Juniper 19.2-r1 (including) 19.2-r1 (including)
Junos_os_evolved Juniper 19.2-r2 (including) 19.2-r2 (including)
Junos_os_evolved Juniper 19.3-r1 (including) 19.3-r1 (including)
Junos_os_evolved Juniper 19.3-r2 (including) 19.3-r2 (including)
Junos_os_evolved Juniper 19.4-r1 (including) 19.4-r1 (including)
Junos_os_evolved Juniper 19.4-r2 (including) 19.4-r2 (including)
Junos_os_evolved Juniper 19.4-r2-s1 (including) 19.4-r2-s1 (including)
Junos_os_evolved Juniper 20.1 (including) 20.1 (including)
Junos_os_evolved Juniper 20.1-r1 (including) 20.1-r1 (including)
Junos_os_evolved Juniper 20.1-r1-s1 (including) 20.1-r1-s1 (including)
Junos_os_evolved Juniper 20.2 (including) 20.2 (including)
Junos_os_evolved Juniper 20.3 (including) 20.3 (including)
Junos_os_evolved Juniper 20.3-r1 (including) 20.3-r1 (including)
Junos_os_evolved Juniper 20.4-r1 (including) 20.4-r1 (including)
Junos_os_evolved Juniper 21.1-r1 (including) 21.1-r1 (including)

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2025 Aqua Security Software Ltd.   Privacy Policy | Terms of Use