QID 44018
Date Published: 2023-04-26
QID 44018: Juniper Network Operating System (Junos OS) Denial of Service (DoS) Vulnerability (JSA70584)
An Improper Check or Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on QFX10002 allows an unauthenticated, adjacent attacker on the local broadcast domain sending a malformed packet to the device, causing all PFEs other than the inbound PFE to wedge and to eventually restart, resulting in a Denial of Service (DoS) condition. Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.
Affected Junos versions:
This issue affects Juniper Networks Junos OS on QFX10002:
All versions prior to 19.1R3-S10;
19.4 versions prior to 19.4R3-S11;
20.2 versions prior to 20.2R3-S7;
20.4 versions prior to 20.4R3-S6;
21.1 versions prior to 21.1R3-S4;
21.2 versions prior to 21.2R3-S4;
21.3 versions prior to 21.3R3-S3;
21.4 versions prior to 21.4R3-S2;
22.1 versions prior to 22.1R3-S1;
22.2 versions prior to 22.2R2-S1, 22.2R3;
22.3 versions prior to 22.3R1-S2, 22.3R2.
QID detection logic: (Authenticated)
It checks for vulnerable Junos OS version.
Successful exploitation allows a a memory leak leading to Denial of Services (DoS).
- JSA70584 -
kb.juniper.net/JSA70584
CVEs related to QID 44018
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| JSA70584 |
kb.juniper.net/JSA70584 |