Vulnerability Name:

CVE-2019-0007 (CCN-155296)

Assigned:2018-10-11
Published:2019-01-09
Updated:2020-08-24
Summary:The vMX Series software uses a predictable IP ID Sequence Number. This leaves the system as well as clients connecting through the device susceptible to a family of attacks which rely on the use of predictable IP ID sequence numbers as their base method of attack. This issue was found during internal product security testing. Affected releases are Juniper Networks Junos OS: 15.1 versions prior to 15.1F5 on vMX Series.
CVSS v3 Severity:10.0 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
8.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:H)
8.1 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
8.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-330
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2019-0007

Source: BID
Type: Third Party Advisory, VDB Entry
106564

Source: XF
Type: UNKNOWN
juniper-junos-cve20190007-weak-security(155296)

Source: CCN
Type: Juniper Networks Security Bulletin JSA10903
Junos OS: vMX series: Predictable IP ID sequence numbers vulnerability (CVE-2019-0007)

Source: CONFIRM
Type: Vendor Advisory
https://kb.juniper.net/JSA10903

Vulnerable Configuration:Configuration 1:
  • cpe:/o:juniper:junos:15.1:*:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:15.1:f1:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:15.1:f2:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:15.1:f3:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:15.1:f4:*:*:*:*:*:*
  • OR cpe:/o:juniper:junos:15.1:f5:*:*:*:*:*:*
  • AND
  • cpe:/h:juniper:mx10:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx10003:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx10008:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx104:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx150:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx2008:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx2010:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx2020:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx204:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx240:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx40:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx480:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx5:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx80:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:mx960:-:*:*:*:*:*:*:*
  • OR cpe:/h:juniper:vmx:-:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:juniper:junos:15.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    juniper junos 15.1
    juniper junos 15.1 f1
    juniper junos 15.1 f2
    juniper junos 15.1 f3
    juniper junos 15.1 f4
    juniper junos 15.1 f5
    juniper mx10 -
    juniper mx10003 -
    juniper mx10008 -
    juniper mx104 -
    juniper mx150 -
    juniper mx2008 -
    juniper mx2010 -
    juniper mx2020 -
    juniper mx204 -
    juniper mx240 -
    juniper mx40 -
    juniper mx480 -
    juniper mx5 -
    juniper mx80 -
    juniper mx960 -
    juniper vmx -
    juniper junos 15.1