CVE-2023-36843

EPSS 0.09%
Veröffentlicht 12.10.2023 23:15:11
Zuletzt bearbeitet 21.11.2024 08:10:43
Quelle sirt@juniper.net
CVE-Watchlists
Login
Unerledigt
Login

Junos OS: SRX Series: The PFE will crash on receiving malformed SSL traffic when Sky ATP is enabled

An Improper Handling of Inconsistent Special Elements vulnerability in the Junos Services Framework (jsf) module of Juniper Networks Junos OS allows an unauthenticated network based attacker to cause a crash in the Packet Forwarding Engine (pfe) and thereby resulting in a Denial of Service (DoS).

Upon receiving malformed SSL traffic, the PFE crashes. A manual restart will be needed to recover the device.

This issue only affects devices with Juniper Networks Advanced Threat Prevention (ATP) Cloud enabled with Encrypted Traffic Insights (configured via ‘security-metadata-streaming policy’).

This issue affects Juniper Networks Junos OS:



  *  All versions prior to 20.4R3-S8, 20.4R3-S9;
  *  21.1 version 21.1R1 and later versions;
  *  21.2 versions prior to 21.2R3-S6;
  *  21.3 versions prior to 21.3R3-S5;
  *  21.4 versions prior to 21.4R3-S5;
  *  22.1 versions prior to 22.1R3-S4;
  *  22.2 versions prior to 22.2R3-S2;
  *  22.3 versions prior to 22.3R2-S2, 22.3R3;
  *  22.4 versions prior to 22.4R2-S1, 22.4R3;

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 91 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Juniper ≫ Junos Version < 20.4

Juniper ≫ Junos Version20.4 Update-

Juniper ≫ Junos Version20.4 Updater1

Juniper ≫ Junos Version20.4 Updater1-s1

Juniper ≫ Junos Version20.4 Updater2

Juniper ≫ Junos Version20.4 Updater2-s1

Juniper ≫ Junos Version20.4 Updater2-s2

Juniper ≫ Junos Version20.4 Updater3

Juniper ≫ Junos Version20.4 Updater3-s1

Juniper ≫ Junos Version20.4 Updater3-s2

Juniper ≫ Junos Version20.4 Updater3-s3

Juniper ≫ Junos Version20.4 Updater3-s4

Juniper ≫ Junos Version20.4 Updater3-s5

Juniper ≫ Junos Version20.4 Updater3-s6

Juniper ≫ Junos Version20.4 Updater3-s7

Juniper ≫ Junos Version20.4 Updater3-s9

Juniper ≫ Junos Version21.1 Updater1

Juniper ≫ Junos Version21.1 Updater1-s1

Juniper ≫ Junos Version21.1 Updater2

Juniper ≫ Junos Version21.1 Updater2-s1

Juniper ≫ Junos Version21.1 Updater2-s2

Juniper ≫ Junos Version21.1 Updater3

Juniper ≫ Junos Version21.1 Updater3-s1

Juniper ≫ Junos Version21.1 Updater3-s2

Juniper ≫ Junos Version21.1 Updater3-s3

Juniper ≫ Junos Version21.1 Updater3-s4

Juniper ≫ Junos Version21.1 Updater3-s5

Juniper ≫ Junos Version21.2 Update-

Juniper ≫ Junos Version21.2 Updater1

Juniper ≫ Junos Version21.2 Updater1-s1

Juniper ≫ Junos Version21.2 Updater1-s2

Juniper ≫ Junos Version21.2 Updater2

Juniper ≫ Junos Version21.2 Updater2-s1

Juniper ≫ Junos Version21.2 Updater2-s2

Juniper ≫ Junos Version21.2 Updater3

Juniper ≫ Junos Version21.2 Updater3-s1

Juniper ≫ Junos Version21.2 Updater3-s2

Juniper ≫ Junos Version21.2 Updater3-s3

Juniper ≫ Junos Version21.2 Updater3-s4

Juniper ≫ Junos Version21.2 Updater3-s5

Juniper ≫ Junos Version21.3 Update-

Juniper ≫ Junos Version21.3 Updater1

Juniper ≫ Junos Version21.3 Updater1-s1

Juniper ≫ Junos Version21.3 Updater1-s2

Juniper ≫ Junos Version21.3 Updater2

Juniper ≫ Junos Version21.3 Updater2-s1

Juniper ≫ Junos Version21.3 Updater2-s2

Juniper ≫ Junos Version21.3 Updater3

Juniper ≫ Junos Version21.3 Updater3-s1

Juniper ≫ Junos Version21.3 Updater3-s2

Juniper ≫ Junos Version21.3 Updater3-s3

Juniper ≫ Junos Version21.3 Updater3-s4

Juniper ≫ Junos Version21.4 Update-

Juniper ≫ Junos Version21.4 Updater1

Juniper ≫ Junos Version21.4 Updater1-s1

Juniper ≫ Junos Version21.4 Updater1-s2

Juniper ≫ Junos Version21.4 Updater2

Juniper ≫ Junos Version21.4 Updater2-s1

Juniper ≫ Junos Version21.4 Updater2-s2

Juniper ≫ Junos Version21.4 Updater3

Juniper ≫ Junos Version21.4 Updater3-s1

Juniper ≫ Junos Version21.4 Updater3-s2

Juniper ≫ Junos Version21.4 Updater3-s3

Juniper ≫ Junos Version21.4 Updater3-s4

Juniper ≫ Junos Version22.1 Updater1

Juniper ≫ Junos Version22.1 Updater1-s1

Juniper ≫ Junos Version22.1 Updater1-s2

Juniper ≫ Junos Version22.1 Updater2

Juniper ≫ Junos Version22.1 Updater2-s1

Juniper ≫ Junos Version22.1 Updater2-s2

Juniper ≫ Junos Version22.1 Updater3

Juniper ≫ Junos Version22.1 Updater3-s1

Juniper ≫ Junos Version22.2 Updater1

Juniper ≫ Junos Version22.2 Updater1-s1

Juniper ≫ Junos Version22.2 Updater1-s2

Juniper ≫ Junos Version22.2 Updater2

Juniper ≫ Junos Version22.2 Updater2-s1

Juniper ≫ Junos Version22.2 Updater2-s2

Juniper ≫ Junos Version22.2 Updater3

Juniper ≫ Junos Version22.2 Updater3-s1

Juniper ≫ Junos Version22.3 Updater1

Juniper ≫ Junos Version22.3 Updater1-s1

Juniper ≫ Junos Version22.3 Updater1-s2

Juniper ≫ Junos Version22.3 Updater2

Juniper ≫ Junos Version22.3 Updater2-s1

Juniper ≫ Junos Version22.3 Updater3

Juniper ≫ Junos Version22.4 Updater1

Juniper ≫ Junos Version22.4 Updater1-s1

Juniper ≫ Junos Version22.4 Updater1-s2

Juniper ≫ Junos Version22.4 Updater2

Juniper ≫ Junos Version22.4 Updater3

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.09%	0.254

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
sirt@juniper.net	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-168 Improper Handling of Inconsistent Special Elements

The product does not properly handle input in which an inconsistency exists between two or more special characters or reserved words.

https://supportportal.juniper.net/JSA73174

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-36843

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-36843

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-36843

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-36843