CVE-2022-22216

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions prior to 18.4R3-S11 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 19.1 prior to 19.1R2-S3, 19.1R3-S7 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 19.2 prior to 19.2R1-S8, 19.2R3-S4 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 19.3 prior to 19.3R3-S4 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 19.4 prior to 19.4R2-S5, 19.4R3-S6 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 20.1 prior to 20.1R3-S2 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 20.2 prior to 20.2R3-S3 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 20.3 prior to 20.3R3-S2 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 20.4 prior to 20.4R3-S4 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 21.1 prior to 21.1R2-S1, 21.1R3 Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 21.2 prior to 21.2R1-S1, 21.2R2 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions prior to 18.3R3-S6 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 18.4 prior to 18.4R2-S9, 18.4R3-S10 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 19.1 prior to 19.1R2-S3, 19.1R3-S7 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 19.2 prior to 19.2R1-S8, 19.2R3-S4 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 19.3 prior to 19.3R3-S4 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 19.4 prior to 19.4R2-S6, 19.4R3-S6 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 20.1 prior to 20.1R3-S2 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 20.2 prior to 20.2R3-S3 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 20.3 prior to 20.3R3-S1 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 20.4 prior to 20.4R3-S1 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 21.1 prior to 21.1R2-S1, 21.1R3 Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 21.2 prior to 21.2R2

Description The issue is related to the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on PTX and QFX10K Series routers, which is associated with security mechanism deficiencies. This allows an adjacent unauthenticated attacker to gain access to sensitive information. The problem, also known as 'Etherleak', occurs because some devices do not reliably pad Ethernet packets, resulting in packets containing fragments of system memory or data from previous packets.

Recommendations For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions prior to 18.4R3-S11, update to version 18.4R3-S11 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 19.1 prior to 19.1R2-S3, 19.1R3-S7, update to version 19.1R2-S3 or 19.1R3-S7 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 19.2 prior to 19.2R1-S8, 19.2R3-S4, update to version 19.2R1-S8 or 19.2R3-S4 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 19.3 prior to 19.3R3-S4, update to version 19.3R3-S4 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 19.4 prior to 19.4R2-S5, 19.4R3-S6, update to version 19.4R2-S5 or 19.4R3-S6 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 20.1 prior to 20.1R3-S2, update to version 20.1R3-S2 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 20.2 prior to 20.2R3-S3, update to version 20.2R3-S3 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 20.3 prior to 20.3R3-S2, update to version 20.3R3-S2 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 20.4 prior to 20.4R3-S4, update to version 20.4R3-S4 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 21.1 prior to 21.1R2-S1, 21.1R3, update to version 21.1R2-S1 or 21.1R3 or later. For Juniper Networks Junos OS on PTX1000 and PTX10000 Series versions 21.2 prior to 21.2R1-S1, 21.2R2, update to version 21.2R1-S1 or 21.2R2 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions prior to 18.3R3-S6, update to version 18.3R3-S6 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 18.4 prior to 18.4R2-S9, 18.4R3-S10, update to version 18.4R2-S9 or 18.4R3-S10 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 19.1 prior to 19.1R2-S3, 19.1R3-S7, update to version 19.1R2-S3 or 19.1R3-S7 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 19.2 prior to 19.2R1-S8, 19.2R3-S4, update to version 19.2R1-S8 or 19.2R3-S4 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 19.3 prior to 19.3R3-S4, update to version 19.3R3-S4 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 19.4 prior to 19.4R2-S6, 19.4R3-S6, update to version 19.4R2-S6 or 19.4R3-S6 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 20.1 prior to 20.1R3-S2, update to version 20.1R3-S2 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 20.2 prior to 20.2R3-S3, update to version 20.2R3-S3 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 20.3 prior to 20.3R3-S1, update to version 20.3R3-S1 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 20.4 prior to 20.4R3-S1, update to version 20.4R3-S1 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 21.1 prior to 21.1R2-S1, 21.1R3, update to version 21.1R2-S1 or 21.1R3 or later. For Juniper Networks Junos OS on QFX10000 Series and PTX5000 Series versions 21.2 prior to 21.2R2, update to version 21.2R2 or later.