一、 漏洞 CVE-2026-21906 基础信息
漏洞信息
# SRX系列GRE加速ICMP导致PFE崩溃漏洞
N/A
神龙判断
是否为 Web 类漏洞: 未知
判断理由:
N/A
提示
尽管我们采用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。
神龙会尽力确保数据准确,但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利!
神龙会尽力确保数据准确,但也请结合实际情况进行甄别与判断。
神龙祝您一切顺利!
漏洞标题
Junos OS: SRX Series: With GRE performance acceleration enabled, receipt of a specific ICMP packet causes the PFE to crash
来源:美国国家漏洞数据库 NVD
漏洞描述信息
An Improper Handling of Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated network-based attacker sending a specific ICMP packet through a GRE tunnel to cause the PFE to crash and restart. When PowerMode IPsec (PMI) and GRE performance acceleration are enabled and the device receives a specific ICMP packet, a crash occurs in the SRX PFE, resulting in traffic loss. PMI is enabled by default, and GRE performance acceleration can be enabled by running the configuration command shown below. PMI is a mode of operation that provides IPsec performance improvements using Vector Packet Processing. Note that PMI with GRE performance acceleration is only supported on specific SRX platforms. This issue affects Junos OS on the SRX Series: * all versions before 21.4R3-S12, * from 22.4 before 22.4R3-S8, * from 23.2 before 23.2R2-S5, * from 23.4 before 23.4R2-S5, * from 24.2 before 24.2R2-S3, * from 24.4 before 24.4R2-S1, * from 25.2 before 25.2R1-S1, 25.2R2.
来源:美国国家漏洞数据库 NVD
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
来源:美国国家漏洞数据库 NVD
漏洞类别
对异常条件的处理不恰当
来源:美国国家漏洞数据库 NVD
漏洞标题
Juniper Networks Junos OS 安全漏洞
来源:中国国家信息安全漏洞库 CNNVD
漏洞描述信息
Juniper Networks Junos OS是美国瞻博网络(Juniper Networks)公司的一套专用于该公司的硬件设备的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。 Juniper Networks Junos OS 21.4R3-S12之前版本、22.4R3-S8之前版本、23.2R2-S5之前版本、23.4R2-S5之前版本、24.2R2-S3之前版本、24.4R2-S1之前版本、25.2R1-S1和25.2R2之前版本存在安全漏洞,该漏洞源于数据包转发引擎异常条件处
来源:中国国家信息安全漏洞库 CNNVD
CVSS信息
N/A
来源:中国国家信息安全漏洞库 CNNVD
漏洞类别
其他
来源:中国国家信息安全漏洞库 CNNVD
二、漏洞 CVE-2026-21906 的公开POC
| # | POC 描述 | 源链接 | 神龙链接 |
|---|
三、漏洞 CVE-2026-21906 的情报信息
- https://www.juniper.net/documentation/us/en/software/junos/vpn-ipsec/topics/topic-map/security-powermode-ipsec-vpn.htmltechnical-description
标题: 2026-01 Security Bulletin: Junos OS: SRX Series: With GRE performance acceleration enabled, receipt of a specific ICMP packet causes the PFE to crash (CVE-2026-21906) -- 🔗来源链接
标签:vendor-advisory
神龙速读:### Key Vulnerability Information - **Title:** 2026-01 Security Bulletin: Junos OS: SRX Series: With GRE performance acceleration enabled, receipt of a specific ICMP packet causes the PFE to crash (CVE-2026-21906) - **Affected Product:** All versions of Junos OS on SRX Series. - **Severity:** High - **CVSS Scores:** - CVSS v3.1: 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) - CVSS v4.0: 8.7 (CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:YR:A/V:C/RE:M/U:Red) - **Problem:** An unauthenticated network-based attacker can send a specific ICMP packet through a GRE tunnel to cause the PFE to crash and restart, requiring GRE performance acceleration and PowerMode IPsec (PMI) to be enabled. - **Solution:** Upgrade to Junos OS 21.4R3-S12, 22.4R3-S8, 23.2R2-S5, 23.4R2-S5, 24.2R2-S3, 24.4R2-S1, 25.2R1-S1, 25.2R2, 25.4R1, or any subsequent releases. - **Workaround:** Disable GRE performance acceleration via 'deactivate security flow gre-performance-acceleration' or disable PMI via 'set security flow power-mode-disable'.
标题: 2026-01 Security Bulletin: Junos OS: SRX Series: With GRE performance acceleration enabled, receipt of a specific ICMP packet causes the PFE to crash (CVE-2026-21906) -- 🔗来源链接
标签:vendor-advisory
神龙速读:### 关键信息摘要 - **漏洞编号**: CVE-2026-21906 - **受影响产品**: Junos OS SRX Series的所有版本 - **漏洞严重性**: 高 #### 漏洞详情 - **问题描述**: - PB一旦接收到特定ICMP包,会导致SRX包转发引擎(PFE)崩溃并重启。 - 通过GRE隧道发送特定ICMP包时,若同时启用了PowerMode IPsec(PMI)和GRE性能加速,则SRX PFE会崩溃,引起流量丢失。 - **影响条件**: - 需要启用GRE性能加速功能。 - 影响的具体版本在21.4R3-S12及以前的多个版本中。 #### 解决方案 - **修复版本**: - Junos OS 21.4R3-S12, 22.4R3-S8, 23.2R2-S5, 23.4R2-S5等及其后续版本。 - **临时解决方法**: - 禁用GRE性能加速或PMI功能。 #### 附加信息 - **漏洞评分(CVSS)**: CVSSv3.1:7.5 和 CVSSv4.0:8.7 - **发现情况**: 在内部产品安全测试或研究中找到,尚未发现恶意利用此漏洞的报告。
- https://nvd.nist.gov/vuln/detail/CVE-2026-21906
四、漏洞 CVE-2026-21906 的评论
暂无评论