Main Vulnerability Database Vulnerabilities #VU82466

#VU82466 Resource exhaustion in Juniper Junos OS - CVE-2022-22191

Published: April 13, 2022

Vulnerability identifier: #VU82466

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2022-22191

CWE-ID: CWE-400

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vulnerable software:
Juniper Junos OS

Software vendor:
Juniper Networks, Inc.

Description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

A Denial of Service (DoS) vulnerability in the processing of a flood of specific ARP traffic in Juniper Networks Junos OS on the EX4300 switch, sent from the local broadcast domain, may allow an unauthenticated network-adjacent attacker to trigger a PFEMAN watchdog timeout, causing the Packet Forwarding Engine (PFE) to crash and restart.

After the restart, transit traffic will be temporarily interrupted until the PFE is reprogrammed.

Remediation

Install updates from vendor's website.

External links

https://supportportal.juniper.net/s/article/2022-04-Security-Bulletin-Junos-OS-EX4300-PFE-Denial-of-Service-DoS-upon-receipt-of-a-flood-of-specific-ARP-traffic-CVE-2022-22191

#VU82466 Resource exhaustion in Juniper Junos OS - CVE-2022-22191

Description

Remediation

External links

Please verify you're human