CVE-2022-22184

Name of the Vulnerable Software and Affected Versions Junos OS version 22.3R1 Junos OS Evolved version 22.3R1-EVO

Description The issue is related to an Improper Input Validation vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. This vulnerability allows an unauthenticated network-based attacker to cause a Denial of Service (DoS) by sending a BGP update message with a specific, optional transitive attribute over an established BGP session. The session will be torn down with an update message error as soon as the update is received. Continuous receipt of such a BGP update will create a sustained Denial of Service (DoS) condition. This issue is exploitable remotely.

Recommendations For Junos OS version 22.3R1, update to 22.3R1-S1 to resolve the issue. For Junos OS Evolved version 22.3R1-EVO, update to a version that includes the fix, as no specific version is mentioned, it is recommended to check with Juniper for the latest update. As a temporary workaround, consider restricting the receipt of BGP update messages containing the specific, optional transitive attribute to minimize the risk of exploitation.