Juniper Junos OS: 2021-04 Security Bulletin: Junos OS: MX Series: DDoS LACP violation upon receipt of specific layer 2 frames in EVPN-VXLAN deployment (JSA11123) (CVE-2021-0228)
Description
An improper check for unusual or exceptional conditions vulnerability in Juniper Networks MX Series platforms with Trio-based MPC (Modular Port Concentrator) deployed in (Ethernet VPN) EVPN-(Virtual Extensible LAN) VXLAN configuration, may allow an attacker sending specific Layer 2 traffic to cause Distributed Denial of Service (DDoS) protection to trigger unexpectedly, resulting in traffic impact.
Solution(s)
juniper-junos-os-upgrade-latest
Referenceshttps://attackerkb.com/topics/cve-2021-0228CVE - 2021-0228JSA11123