CVE-2022-22234

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions prior to 18.4R3-S11 Juniper Networks Junos OS versions 19.1 prior to 19.1R3-S9 Juniper Networks Junos OS versions 19.2 prior to 19.2R1-S9, 19.2R3-S5 Juniper Networks Junos OS versions 19.3 prior to 19.3R3-S6 Juniper Networks Junos OS versions 19.4 prior to 19.4R2-S7, 19.4R3-S8 Juniper Networks Junos OS versions 20.1 prior to 20.1R3-S4 Juniper Networks Junos OS versions 20.2 prior to 20.2R3-S4 Juniper Networks Junos OS versions 20.3 prior to 20.3R3-S4 Juniper Networks Junos OS versions 20.4 prior to 20.4R3-S3 Juniper Networks Junos OS versions 21.1 prior to 21.1R3-S1 Juniper Networks Junos OS versions 21.2 prior to 21.2R3 Juniper Networks Junos OS versions 21.3 prior to 21.3R2 Juniper Networks Junos OS versions 21.4 prior to 21.4R2

Description The issue is related to an Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS. This vulnerability allows a locally authenticated attacker with low privileges to cause a Denial of Service (DoS). When the device is busy, one or more SFPs might not be detected, leading to traffic impact and at least a partial DoS. Indicators of compromise include log messages about unplugged SFPs and corresponding syspld messages without any physical or environmental cause.

Recommendations For Juniper Networks Junos OS versions prior to 18.4R3-S11, update to version 18.4R3-S11 or later. For Juniper Networks Junos OS versions 19.1 prior to 19.1R3-S9, update to version 19.1R3-S9 or later. For Juniper Networks Junos OS versions 19.2 prior to 19.2R1-S9, 19.2R3-S5, update to version 19.2R1-S9, 19.2R3-S5 or later. For Juniper Networks Junos OS versions 19.3 prior to 19.3R3-S6, update to version 19.3R3-S6 or later. For Juniper Networks Junos OS versions 19.4 prior to 19.4R2-S7, 19.4R3-S8, update to version 19.4R2-S7, 19.4R3-S8 or later. For Juniper Networks Junos OS versions 20.1 prior to 20.1R3-S4, update to version 20.1R3-S4 or later. For Juniper Networks Junos OS versions 20.2 prior to 20.2R3-S4, update to version 20.2R3-S4 or later. For Juniper Networks Junos OS versions 20.3 prior to 20.3R3-S4, update to version 20.3R3-S4 or later. For Juniper Networks Junos OS versions 20.4 prior to 20.4R3-S3, update to version 20.4R3-S3 or later. For Juniper Networks Junos OS versions 21.1 prior to 21.1R3-S1, update to version 21.1R3-S1 or later. For Juniper Networks Junos OS versions 21.2 prior to 21.2R3, update to version 21.2R3 or later. For Juniper Networks Junos OS versions 21.3 prior to 21.3R2, update to version 21.3R2 or later. For Juniper Networks Junos OS versions 21.4 prior to 21.4R2, update to version 21.4R2 or later.