Lucene search

[email protected]CVE-2022-22203

HistoryJul 20, 2022 - 3:15 p.m.

CVE-2022-22203

2022-07-2015:15:08

CWE-697

[email protected]

web.nvd.nist.gov

cve

2022

22203

incorrect comparison vulnerability

pfe

juniper networks

junos os

dos

denial of service

nvd

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

33.2%

JSON

An Incorrect Comparison vulnerability in PFE of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to cause a Denial of Service (DoS). On QFX5000 Series, and EX4600 and EX4650 platforms, the fxpc process will crash followed by the FPC reboot upon receipt of a specific hostbound packet. Continued receipt of these specific packets will create a sustained Denial of Service (DoS) condition. This issue only affects Juniper Networks Junos OS 19.4 version 19.4R3-S4.

Affected configurations

NVD

Node

juniperjunosMatch19.4r3-s4

AND

juniperex4600Match-

juniperex4650Match-

juniperqfx5100Match-

juniperqfx5110Match-

juniperqfx5120Match-

juniperqfx5130Match-

juniperqfx5200Match-

juniperqfx5210Match-

juniperqfx5220Match-

juniperqfx5700Match-

CPENameOperatorVersion
juniper:junosjuniper junoseq19.4

CPE	Name	Operator	Version
juniper:junos	juniper junos	eq	19.4

CNA Affected

[
  {
    "platforms": [
      "EX4600 Series, QFX5000 Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "19.4R3-S4",
        "status": "unaffected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "19.4R3-S5",
        "status": "affected",
        "version": "19.4",
        "versionType": "custom"
      }
    ]
  }
]