PT-2023-1261 · Juniper Networks · Junos
Published
2023-01-11
·
Updated
2023-08-08
·
CVE-2023-22403
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Junos OS versions prior to 20.2R3-S7
Junos OS versions 20.4 prior to 20.4R3-S4
Junos OS versions 21.1 prior to 21.1R3-S3
Junos OS versions 21.2 prior to 21.2R3-S1
Junos OS versions 21.3 prior to 21.3R3
Junos OS versions 21.4 prior to 21.4R3
Junos OS versions 22.1 prior to 22.1R2
Description
The issue is related to an Allocation of Resources Without Limits or Throttling vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS, allowing a network-based, unauthenticated attacker to cause a Denial of Service (DoS). On QFX10K Series, Inter-Chassis Control Protocol (ICCP) connection flaps and sync issues will be observed due to excessive specific traffic to the local device.
Recommendations
For versions prior to 20.2R3-S7, update to 20.2R3-S7 or later.
For versions 20.4 prior to 20.4R3-S4, update to 20.4R3-S4 or later.
For versions 21.1 prior to 21.1R3-S3, update to 21.1R3-S3 or later.
For versions 21.2 prior to 21.2R3-S1, update to 21.2R3-S1 or later.
For versions 21.3 prior to 21.3R3, update to 21.3R3 or later.
For versions 21.4 prior to 21.4R3, update to 21.4R3 or later.
For versions 22.1 prior to 22.1R2, update to 22.1R2 or later.
Fix
DoS
Allocation of Resources Without Limits
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos