CVE-2023-36831

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS on SRX Series versions 22.2 through 22.2R3 Juniper Networks Junos OS on SRX Series versions 22.3 through 22.3R2-S1, 22.3R3 Juniper Networks Junos OS on SRX Series versions 22.4 through 22.4R1-S2, 22.4R2

Description An Improper Check or Handling of Exceptional Conditions vulnerability in the UTM Web-Filtering feature causes a jbuf memory leak when accessing certain websites, leading to a Denial of Service condition. The jbuf memory leak only occurs in SSL Proxy and UTM Web-Filtering configurations. Service restoration is only possible by rebooting the system.

Recommendations For versions 22.2 through 22.2R3, update to version 22.2R3 or later. For versions 22.3 through 22.3R2-S1, 22.3R3, update to version 22.3R2-S1 or later. For versions 22.4 through 22.4R1-S2, 22.4R2, update to version 22.4R1-S2 or later. As a temporary workaround, consider disabling the UTM Web-Filtering feature until a patch is available. Restrict access to the SSL Proxy configuration to minimize the risk of exploitation.