What is CVE-2021-0247?

CVE-2021-0247 is a medium-severity vulnerability in Juniper Junos, classified under Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition). CVSS score: 5.1/10. Published 2021-04-22.

How severe is CVE-2021-0247?

Medium severity. CVSS v3 base score is 5.1 out of 10.

Vulnerability in Juniper Junos

CVE-2021-0247

A Race Condition (Concurrent Execution using Shared Resource with Improper Synchronization) vulnerability in the firewall process (dfwd) of Juniper Networks Junos OS allows an attacker to bypass the firewall rule sets applied to the input…

Vulnerability class: Race Condition

EPSS: 0.006 (41.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.1 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L.

Affected products

Juniper Junos — versions 14.1x53, 15.1x53, 14.1
Juniper Ptx1000
Juniper Ptx10001-36mr
Juniper Ptx10002
Juniper Ptx10003
Juniper Ptx10004
Juniper Ptx10008
Juniper Ptx10016
Juniper Ptx3000
Juniper Ptx5000

Weakness classification (CWE)

CWE-362 — Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)

References

sirt@juniper.net (x_refsource_MISC, Vendor Advisory)

Frequently asked questions

What is CVE-2021-0247?: CVE-2021-0247 is a medium-severity vulnerability in Juniper Junos, classified under Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition). CVSS score: 5.1/10. Published 2021-04-22.
How severe is CVE-2021-0247?: Medium severity. CVSS v3 base score is 5.1 out of 10.