CVE-2022-22231

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 21.4R1-S2 Junos OS version 21.4R2 on SRX Series

Description The issue is related to an Unchecked Return Value to NULL Pointer Dereference in the Packet Forwarding Engine of Junos OS, allowing an unauthenticated network-based attacker to cause a Denial of Service. Specifically, on SRX Series, if Unified Threat Management Enhanced Content Filtering and AntiVirus are enabled together and the system processes certain valid transit traffic, the Packet Forwarding Engine will crash and restart.

Recommendations For Junos OS versions prior to 21.4R1-S2, update to version 21.4R1-S2 or later. For Junos OS version 21.4R2 on SRX Series, consider disabling Unified Threat Management Enhanced Content Filtering and AntiVirus together until a patch is available.