Improper validation of specified quantity in input in Junos OS - CVE-2026-57023
Published: July 8, 2026
Junos OS
Detailed vulnerability description
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper validation of specified quantity in input error in the TCP proxy plugin. A remote non-authenticated attacker can cause a complete Denial of Service (DoS).
When TCP proxy is engaged in a flow session, to support ALGs, Advanced Anti-Malware, ICAP or UTM, a TCP packet with specifically malformed TCP header will cause flow processing daemon (flowd) to crash and restart.
This causes a complete service outage until the system has automatically recovered.