PT-2022-6675 · Juniper Networks · Junos

Published

2022-10-12

·

Updated

2022-10-21

·

CVE-2022-22235

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS on SRX Series versions 20.2 through 20.2R3-S4 Juniper Networks Junos OS on SRX Series versions 20.3 through 20.3R3-S3 Juniper Networks Junos OS on SRX Series versions 20.4 through 20.4R3-S2 Juniper Networks Junos OS on SRX Series versions 21.1 through 21.1R3-S1 Juniper Networks Junos OS on SRX Series versions 21.2 through 21.2R3 Juniper Networks Junos OS on SRX Series versions 21.3 through 21.3R2 Juniper Networks Junos OS on SRX Series versions 21.4 through 21.4R1-S1 Juniper Networks Junos OS on SRX Series versions 22.1 through 22.1R1
Description The issue is related to an Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series. This vulnerability can be exploited by an unauthenticated, network-based attacker to cause a Denial of Service (DoS) when a GPRS Tunnel Protocol (GTP) packet is received with a malformed field in the IP header of GTP encapsulated General Packet Radio Services (GPRS) traffic. The packet needs to match existing state, which is outside the attacker's control. The issue will only be observed when endpoint address validation is enabled.
Recommendations For versions 20.2 through 20.2R3-S4, update to version 20.2R3-S5 or later. For versions 20.3 through 20.3R3-S3, update to version 20.3R3-S4 or later. For versions 20.4 through 20.4R3-S2, update to version 20.4R3-S3 or later. For versions 21.1 through 21.1R3-S1, update to version 21.1R3-S2 or later. For versions 21.2 through 21.2R3, update to version 21.2R3-S1 or later. For versions 21.3 through 21.3R2, update to version 21.3R3 or later. For versions 21.4 through 21.4R1-S1, update to version 21.4R1-S2 or later. For versions 22.1 through 22.1R1, update to version 22.1R1-S1 or later.

Fix

DoS

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-754

Related Identifiers

BDU:2023-03316
CVE-2022-22235

Affected Products

Junos