CVE-2023-36836

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 19.4R3-S5 through 19.4R3-S9 Juniper Networks Junos OS versions 20.1R2 and later Juniper Networks Junos OS versions prior to 20.2R3-S7 Juniper Networks Junos OS versions prior to 20.3R3-S5 Juniper Networks Junos OS versions prior to 20.4R3-S6 Juniper Networks Junos OS versions prior to 21.1R3-S4 Juniper Networks Junos OS versions prior to 21.2R3-S2 Juniper Networks Junos OS versions prior to 21.3R3-S1 Juniper Networks Junos OS versions prior to 21.4R3 Juniper Networks Junos OS versions prior to 22.1R1-S2, 22.1R2 Juniper Networks Junos OS versions prior to 22.2R2 Juniper Networks Junos OS Evolved versions prior to 20.4R3-S6-EVO Juniper Networks Junos OS Evolved version 21.1R1-EVO and later Juniper Networks Junos OS Evolved version 21.2R1-EVO and later Juniper Networks Junos OS Evolved versions prior to 21.3R3-S1-EVO Juniper Networks Junos OS Evolved versions prior to 21.4R3-EVO Juniper Networks Junos OS Evolved versions prior to 22.1R1-S2-EVO, 22.1R2-EVO Juniper Networks Junos OS Evolved versions prior to 22.2R2-EVO

Description A Use of an Uninitialized Resource vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with low privileges to cause a Denial of Service (DoS). In a Multicast only Fast Reroute (MoFRR) scenario, the rpd process can crash when a specific low privileged CLI command is executed. The rpd crash will impact all routing protocols until the process has automatically been restarted. Continued execution of this command will lead to a sustained DoS. This issue is considered difficult to exploit as the operational state which makes it exploitable is outside the attacker's control.

Recommendations For Juniper Networks Junos OS versions 19.4R3-S5 through 19.4R3-S9, update to version 19.4R3-S9 or later. For Juniper Networks Junos OS versions 20.1R2 and later, update to version 20.2R3-S7 or later. For Juniper Networks Junos OS versions prior to 20.2R3-S7, update to version 20.2R3-S7 or later. For Juniper Networks Junos OS versions prior to 20.3R3-S5, update to version 20.3R3-S5 or later. For Juniper Networks Junos OS versions prior to 20.4R3-S6, update to version 20.4R3-S6 or later. For Juniper Networks Junos OS versions prior to 21.1R3-S4, update to version 21.1R3-S4 or later. For Juniper Networks Junos OS versions prior to 21.2R3-S2, update to version 21.2R3-S2 or later. For Juniper Networks Junos OS versions prior to 21.3R3-S1, update to version 21.3R3-S1 or later. For Juniper Networks Junos OS versions prior to 21.4R3, update to version 21.4R3 or later. For Juniper Networks Junos OS versions prior to 22.1R1-S2, 22.1R2, update to version 22.1R1-S2 or later. For Juniper Networks Junos OS versions prior to 22.2R2, update to version 22.2R2 or later. For Juniper Networks Junos OS Evolved versions prior to 20.4R3-S6-EVO, update to version 20.4R3-S6-EVO or later. For Juniper Networks Junos OS Evolved version 21.1R1-EVO and later, update to version 21.3R3-S1-EVO or later. For Juniper Networks Junos OS Evolved version 21.2R1-EVO and later, update to version 21.3R3-S1-EVO or later. For Juniper Networks Junos OS Evolved versions prior to 21.3R3-S1-EVO, update to version 21.3R3-S1-EVO or later. For Juniper Networks Junos OS Evolved versions prior to 21.4R3-EVO, update to version 21.4R3-EVO or later. For Juniper Networks Junos OS Evolved versions prior to 22.1R1-S2-EVO, 22.1R2-EVO, update to version 22.1R1-S2-EVO or later. For Juniper Networks Junos OS Evolved versions prior to 22.2R2-EVO, update to version 22.2R2-EVO or later.