Lucene search

K
cve[email protected]CVE-2022-22203
HistoryJul 20, 2022 - 3:15 p.m.

CVE-2022-22203

2022-07-2015:15:08
CWE-697
web.nvd.nist.gov
34
2
cve
2022
22203
incorrect comparison vulnerability
pfe
juniper networks
junos os
dos
denial of service
nvd

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

32.9%

An Incorrect Comparison vulnerability in PFE of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to cause a Denial of Service (DoS). On QFX5000 Series, and EX4600 and EX4650 platforms, the fxpc process will crash followed by the FPC reboot upon receipt of a specific hostbound packet. Continued receipt of these specific packets will create a sustained Denial of Service (DoS) condition. This issue only affects Juniper Networks Junos OS 19.4 version 19.4R3-S4.

Affected configurations

NVD
Node
juniperjunosMatch19.4r3-s4
AND
juniperex4600Match-
OR
juniperex4650Match-
OR
juniperqfx5100Match-
OR
juniperqfx5110Match-
OR
juniperqfx5120Match-
OR
juniperqfx5130Match-
OR
juniperqfx5200Match-
OR
juniperqfx5210Match-
OR
juniperqfx5220Match-
OR
juniperqfx5700Match-
CPENameOperatorVersion
juniper:junosjuniper junoseq19.4

CNA Affected

[
  {
    "platforms": [
      "EX4600 Series, QFX5000 Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "19.4R3-S4",
        "status": "unaffected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "19.4R3-S5",
        "status": "affected",
        "version": "19.4",
        "versionType": "custom"
      }
    ]
  }
]

Social References

More

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

32.9%

Related for CVE-2022-22203