CVE-2022-22227

EPSS 0.13%
Published 18.10.2022 03:15:09
Last modified 21.11.2024 06:46:26
Source sirt@juniper.net
Teams watchlist Login
Open Login

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated network-based attacker to cause a partial Denial of Service (DoS). On receipt of specific IPv6 transit traffic, Junos OS Evolved on ACX7100-48L, ACX7100-32C and ACX7509 sends this traffic to the Routing Engine (RE) instead of forwarding it, leading to increased CPU utilization of the RE and a partial DoS. This issue only affects systems configured with IPv6. This issue does not affect ACX7024 which is supported from 22.3R1-EVO onwards where the fix has already been incorporated as indicated in the solution section. This issue affects Juniper Networks Junos OS Evolved on ACX7100-48L, ACX7100-32C, ACX7509: 21.1-EVO versions prior to 21.1R3-S2-EVO; 21.2-EVO versions prior to 21.2R3-S2-EVO; 21.3-EVO versions prior to 21.3R3-EVO; 21.4-EVO versions prior to 21.4R1-S1-EVO, 21.4R2-EVO. This issue does not affect Juniper Networks Junos OS Evolved versions prior to 21.1R1-EVO.

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Juniper ≫ Junos Os Evolved Version21.1 Update-

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.1 Updater1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.1 Updater1-s1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.1 Updater2

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.1 Updater3

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.1 Updater3-s1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.2 Update-

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.2 Updater1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.2 Updater1-s1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.2 Updater1-s2

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.2 Updater2

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.2 Updater2-s1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.2 Updater2-s2

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.2 Updater3

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.2 Updater3-s1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.3 Update-

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.3 Updater1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.3 Updater1-s1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.3 Updater2

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.3 Updater2-s1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.3 Updater2-s2

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.4 Update-

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Juniper ≫ Junos Os Evolved Version21.4 Updater1

   Juniper ≫ Acx7100-32c Version-
   Juniper ≫ Acx7100-48l Version-
   Juniper ≫ Acx7509 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.13%	0.328

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
sirt@juniper.net	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-754 Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

https://kb.juniper.net/JSA69878

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-22227

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-22227

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-22227

EUVD