CVE-2022-22232

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 21.4 prior to 21.4R1-S2 Juniper Networks Junos OS version 21.4R2 on SRX Series Juniper Networks Junos OS versions 22.1 prior to 22.1R1-S1 Juniper Networks Junos OS version 22.1R2 on SRX Series

Description The issue is related to a NULL Pointer Dereference vulnerability in the Packet Forwarding Engine of Juniper Networks Junos OS. This vulnerability can be exploited by an unauthenticated, network-based attacker to cause a Denial of Service (DoS). Specifically, if Unified Threat Management (UTM) Enhanced Content Filtering (CF) is enabled and certain transit traffic is processed, the PFE will crash and restart.

Recommendations For Juniper Networks Junos OS versions 21.4 prior to 21.4R1-S2, update to version 21.4R1-S2 or later. For Juniper Networks Junos OS version 21.4R2 on SRX Series, update to a version that includes the fix for this issue. For Juniper Networks Junos OS versions 22.1 prior to 22.1R1-S1, update to version 22.1R1-S1 or later. For Juniper Networks Junos OS version 22.1R2 on SRX Series, update to a version that includes the fix for this issue.