A denial-of-service vulnerability has been identified in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. This vulnerability allows an unauthenticated adjacent attacker to cause the rpd process to crash and restart by sending a specific BGP update packet. The issue affects both iBGP and eBGP, as well as IPv4 and IPv6. The vulnerability leads to a sustained denial-of-service condition with continuous receipt and processing of the malicious packet.
Exploitation of this vulnerability causes the rpd process to crash and restart, creating a denial-of-service condition that can be sustained with continuous receipt of the malicious BGP update packets.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
