CVE-2023-44198

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 20.4R3-S5 Junos OS versions prior to 21.1R3-S4 Junos OS versions prior to 21.2R3-S4 Junos OS versions prior to 21.3R3-S3 Junos OS versions prior to 21.4R3-S2 Junos OS versions prior to 22.1R2-S2, 22.1R3 Junos OS versions prior to 22.2R2-S1, 22.2R3 Junos OS versions prior to 22.3R1-S2, 22.3R2

Description An Improper Check for Unusual or Exceptional Conditions issue in the SIP ALG of Juniper Networks Junos OS on SRX Series and MX Series allows an unauthenticated network-based attacker to cause an integrity impact in connected networks. If the SIP ALG is configured and a device receives a specifically malformed SIP packet, the device prevents this packet from being forwarded, but any subsequently received retransmissions of the same packet are forwarded as if they were valid.

Recommendations For versions prior to 20.4R3-S5, update to 20.4R3-S5 or later. For versions prior to 21.1R3-S4, update to 21.1R3-S4 or later. For versions prior to 21.2R3-S4, update to 21.2R3-S4 or later. For versions prior to 21.3R3-S3, update to 21.3R3-S3 or later. For versions prior to 21.4R3-S2, update to 21.4R3-S2 or later. For versions prior to 22.1R2-S2, 22.1R3, update to 22.1R2-S2 or 22.1R3 or later. For versions prior to 22.2R2-S1, 22.2R3, update to 22.2R2-S1 or 22.2R3 or later. For versions prior to 22.3R1-S2, 22.3R2, update to 22.3R1-S2 or 22.3R2 or later.