SB2022071363 - Memory leak in Juniper Junos OS
Published: July 13, 2022
Security Bulletin ID
SB2022071363
Severity
Medium
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2022-22205)
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
A Missing Release of Memory after Effective Lifetime vulnerability in the Application Quality of Experience (appqoe) subsystem of the PFE of Juniper Networks Junos OS on SRX Series allows an unauthenticated network based attacker to cause a Denial of Service (DoS).
Upon receiving specific traffic a memory leak will occur.
Remediation
Install update from vendor's website.