CVE-2023-28980

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 20.2R3-S5 through 20.2R3-S6 Juniper Networks Junos OS versions 20.3R3-S2 through 20.3R3-S5 Juniper Networks Junos OS versions 20.4R3-S1 through 20.4R3-S4 Juniper Networks Junos OS versions 21.1R3 through 21.1R3-S3 Juniper Networks Junos OS versions 21.2R1-S2 through 21.2R3-S2 Juniper Networks Junos OS versions 21.2R2-S1 through 21.2R3-S2 Juniper Networks Junos OS versions 21.3R2 through 21.3R3 Juniper Networks Junos OS versions prior to 21.4R2-S1, 21.4R3 Juniper Networks Junos OS versions prior to 22.1R2 Juniper Networks Junos OS Evolved versions 20.4R3-S1-EVO through 20.4R3-S6-EVO Juniper Networks Junos OS Evolved versions 21.2R1-S2-EVO through 21.2R3-S4-EVO Juniper Networks Junos OS Evolved versions 21.3R2-EVO through 21.3R3-S1-EVO Juniper Networks Junos OS Evolved versions prior to 21.4R2-S1-EVO, 21.4R3-EVO Juniper Networks Junos OS Evolved versions prior to 22.1R2-EVO

Description A Use After Free vulnerability in the routing protocol daemon allows a locally authenticated attacker with low privileges to cause Denial of Service (DoS). In a rib sharding scenario, the rpd process will crash shortly after a specific CLI command is issued. This issue is more likely to occur in a scenario with high route scale (>1M routes).

Recommendations For Juniper Networks Junos OS version 20.2, update to version 20.2R3-S6 or later. For Juniper Networks Junos OS version 20.3, update to version 20.3R3-S5 or later. For Juniper Networks Junos OS version 20.4, update to version 20.4R3-S4 or later. For Juniper Networks Junos OS version 21.1, update to version 21.1R3-S3 or later. For Juniper Networks Junos OS version 21.2, update to version 21.2R3-S2 or later. For Juniper Networks Junos OS version 21.3, update to version 21.3R3 or later. For Juniper Networks Junos OS version 21.4, update to version 21.4R2-S1, 21.4R3 or later. For Juniper Networks Junos OS version 22.1, update to version 22.1R2 or later. For Juniper Networks Junos OS Evolved version 20.4-EVO, update to version 20.4R3-S6-EVO or later. For Juniper Networks Junos OS Evolved version 21.2-EVO, update to version 21.2R3-S4-EVO or later. For Juniper Networks Junos OS Evolved version 21.3-EVO, update to version 21.3R3-S1-EVO or later. For Juniper Networks Junos OS Evolved version 21.4-EVO, update to version 21.4R2-S1-EVO, 21.4R3-EVO or later. For Juniper Networks Junos OS Evolved version 22.1-EVO, update to version 22.1R2-EVO or later.