CVE-2022-22212

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS Evolved versions 21.2 through 21.2R3-EVO Juniper Networks Junos OS Evolved versions 21.3 through 21.3R2-EVO

Description An Allocation of Resources Without Limits or Throttling issue in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to cause a Denial of Service (DoS). On all Junos Evolved platforms, hostbound protocols will be impacted by a high rate of specific hostbound traffic from ports on a PFE. Continued receipt of this amount of traffic will create a sustained Denial of Service (DoS) condition.

Recommendations For Juniper Networks Junos OS Evolved versions 21.2 through 21.2R3-EVO, update to version 21.2R3-EVO or later. For Juniper Networks Junos OS Evolved versions 21.3 through 21.3R2-EVO, update to version 21.3R2-EVO or later. As a temporary workaround, consider restricting the amount of hostbound traffic from ports on a PFE to minimize the risk of exploitation.