On Junos devices with the BGP graceful restart helper mode enabled or the BGP graceful restart mechanism enabled, a certain sequence of BGP session restart on a remote peer that has the graceful restart mechanism enabled may cause the local routing protocol daemon (RPD) process t
On Junos devices with the BGP graceful restart helper mode enabled or the BGP graceful restart mechanism enabled, a certain sequence of BGP session restart on a remote peer that has the graceful restart mechanism enabled may cause the local routing protocol daemon (RPD) process to crash and restart. Repeated crashes of the RPD process can cause prolonged Denial of Service (DoS). Graceful restart…
| Vendor | Product | Versions |
|---|---|---|
| Juniper Networks | Junos OS | 16.1 versions prior to 16.1R7-S3, 16.2 versions prior to 16.2R2-S9, 17.1 versions prior to 17.1R3, 17.2 versions prior to 17.2R3, 17.2X75 versions prior to 17.2X75-D105, 17.3 versions prior to 17.3R3-S2, 17.4 versions prior to 17.4R1-S7 to 17.4R2-S2 and to 17.4R3, 18.1 versions prior to 18.1R3-S2, 18.2 versions prior to 18.2R2, 18.2X75 versions prior to 18.2X75-D12 and 18.2X75-D30, 18.3 versions prior to 18.3R1-S4 and 18.3R2 |
Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.
For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.
Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:
No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.