What is CVE-2021-31382?

CVE-2021-31382 is a medium-severity vulnerability in Juniper Junos, classified under Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition). CVSS score: 6.5/10. Published 2021-10-19.

How severe is CVE-2021-31382?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Juniper Junos

CVE-2021-31382

On PTX1000 System, PTX10002-60C System, after upgrading to an affected release, a Race Condition vulnerability between the chassis daemon (chassisd) and firewall process (dfwd) of Juniper Networks Junos OS, may update the device's interfac…

Vulnerability class: Race Condition

EPSS: 0.006 (43.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L.

Affected products

Juniper Junos — versions 17.2, 17.2x75, 17.3
Juniper Ptx1000
Juniper Ptx10002-60c
Juniper Networks Junos Os — versions unspecified, 17.2R1, 17.3

Weakness classification (CWE)

CWE-362 — Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)

References

sirt@juniper.net (x_refsource_CONFIRM, Vendor Advisory)
sirt@juniper.net (x_refsource_MISC, Vendor Advisory)

Frequently asked questions

What is CVE-2021-31382?: CVE-2021-31382 is a medium-severity vulnerability in Juniper Junos, classified under Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition). CVSS score: 6.5/10. Published 2021-10-19.
How severe is CVE-2021-31382?: Medium severity. CVSS v3 base score is 6.5 out of 10.