CVE-2023-22402

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS Evolved versions 21.3 prior to 21.3R3-EVO Juniper Networks Junos OS Evolved versions 21.4 prior to 21.4R2-EVO Juniper Networks Junos OS Evolved versions 22.1 prior to 22.1R2-EVO Juniper Networks Junos OS Evolved versions 22.2 prior to 22.2R1-S1-EVO, 22.2R2-EVO

Description A Use After Free vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). This issue may be observed in a Non Stop Routing (NSR) scenario, where an unexpected kernel restart might occur if "bgp auto-discovery" is enabled and there is a BGP neighbor flap of auto-discovery sessions. The occurrence of this issue depends on system internal timing and is outside of an attacker's direct control.

Recommendations For versions 21.3 prior to 21.3R3-EVO, update to version 21.3R3-EVO or later. For versions 21.4 prior to 21.4R2-EVO, update to version 21.4R2-EVO or later. For versions 22.1 prior to 22.1R2-EVO, update to version 22.1R2-EVO or later. For versions 22.2 prior to 22.2R1-S1-EVO, 22.2R2-EVO, update to version 22.2R1-S1-EVO, 22.2R2-EVO or later.