CVE-2022-22247

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS Evolved versions 21.3 prior to 21.3R3-EVO Juniper Networks Junos OS Evolved versions 21.4 prior to 21.4R2-EVO Juniper Networks Junos OS Evolved versions 22.1 prior to 22.1R2-EVO

Description The issue exists due to insufficient input validation in the processing of ingress TCP segments. An attacker can exploit this by sending a specially crafted TCP segment to the device, potentially causing a kernel panic and leading to a Denial of Service (DoS) condition. Continued receipt and processing of such TCP segments could result in a sustained DoS condition.

Recommendations For versions 21.3 prior to 21.3R3-EVO, update to version 21.3R3-EVO or later. For versions 21.4 prior to 21.4R2-EVO, update to version 21.4R2-EVO or later. For versions 22.1 prior to 22.1R2-EVO, update to version 22.1R2-EVO or later.