How severe is CVE-2019-0055?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.5 out of 10.

What type of vulnerability is CVE-2019-0055?

This is classified as CWE-130, which is a common weakness in software security.

CVE-2019-0055

HIGH Year: 2019

CVSS v3 Score

7.5

High

CVSS v2 Score

5.0

Medium

Weakness Type

CWE-130

View all →

Vulnerability Description

A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by sending specific types of valid SIP traffic to the device. In this case, the flowd process crashes and generates a core dump while processing SIP ALG traffic. Continued receipt of these valid SIP packets will result in a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS: 12.3X48 versions prior to 12.3X48-D61, 12.3X48-D65 on SRX Series; 15.1X49 versions prior to 15.1X49-D130 on SRX Series; 17.3 versions prior to 17.3R3 on SRX Series; 17.4 versions prior to 17.4R2 on SRX Series.

CVE-2018-5453

HIGH

CVSS:7.5(High)

An Improper Handling of Length Parameter Inconsistency issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. An attacker may be able to edit the element of an HTT...

CWE-1302018

CVE-2021-20610

HIGH

CVSS:7.5(High)

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SF...

CWE-1302021

CVE-2021-3454

HIGH

CVSS:7.5(High)

Truncated L2CAP K-frame causes assertion failure. Zephyr versions >= 2.4.0, >= v.2.50 contain Improper Handling of Length Parameter Inconsistency (CWE-130), Reachable Assertion (CWE-617). For more inf...

CWE-1302021

CVE-2021-35516

HIGH

CVSS:7.5(High)

When reading a specially crafted 7Z archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mou...

CWE-1302021

CVE-2021-35517

HIGH

CVSS:7.5(High)

When reading a specially crafted TAR archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mo...

CWE-1302021

CVE-2021-36090

HIGH

CVSS:7.5(High)

When reading a specially crafted ZIP archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mo...

CWE-1302021

CVE-2019-0055

Vulnerability Description

Related Vulnerabilities

CVE-2018-5453

CVE-2021-20610

CVE-2021-3454

CVE-2021-35516

CVE-2021-35517

CVE-2021-36090