Lucene search

[email protected]CVE-2023-22410

HistoryJan 13, 2023 - 12:15 a.m.

CVE-2023-22410

2023-01-1300:15:11

CWE-401

[email protected]

web.nvd.nist.gov

cve

2023

22410

memory release

vulnerability

junos os

mx series

dos

juniper networks

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

30.5%

JSON

A Missing Release of Memory after Effective Lifetime vulnerability in the Juniper Networks Junos OS on MX Series platforms with MPC10/MPC11 line cards, allows an unauthenticated adjacent attacker to cause a Denial of Service (DoS). Devices are only vulnerable when the Suspicious Control Flow Detection (scfd) feature is enabled. Upon enabling this specific feature, an attacker sending specific traffic is causing memory to be allocated dynamically and it is not freed. Memory is not freed even after deactivating this feature. Sustained processing of such traffic will eventually lead to an out of memory condition that prevents all services from continuing to function, and requires a manual restart to recover. The FPC memory usage can be monitored using the CLI command “show chassis fpc”. On running the above command, the memory of AftDdosScfdFlow can be observed to detect the memory leak. This issue affects Juniper Networks Junos OS on MX Series: All versions prior to 20.2R3-S5; 20.3 version 20.3R1 and later versions.

Affected configurations

NVD

Node

juniperjunosRange<20.2

juniperjunosMatch20.2-

juniperjunosMatch20.2r1

juniperjunosMatch20.2r1-s1

juniperjunosMatch20.2r1-s2

juniperjunosMatch20.2r1-s3

juniperjunosMatch20.2r2

juniperjunosMatch20.2r2-s1

juniperjunosMatch20.2r2-s2

juniperjunosMatch20.2r2-s3

juniperjunosMatch20.2r3

juniperjunosMatch20.2r3-s1

juniperjunosMatch20.2r3-s2

juniperjunosMatch20.2r3-s3

juniperjunosMatch20.2r3-s4

juniperjunosMatch20.3-

juniperjunosMatch20.3r1

juniperjunosMatch20.3r1-s1

juniperjunosMatch20.3r1-s2

juniperjunosMatch20.3r2

juniperjunosMatch20.3r2-s1

juniperjunosMatch20.3r3

juniperjunosMatch20.3r3-s1

juniperjunosMatch20.3r3-s2

juniperjunosMatch20.3r3-s3

juniperjunosMatch20.3r3-s4

juniperjunosMatch20.3r3-s5

juniperjunosMatch20.3r3-s6

AND

junipermx10Match-

junipermx10000Match-

junipermx10003Match-

junipermx10008Match-

junipermx10016Match-

junipermx104Match-

junipermx150Match-

junipermx2008Match-

junipermx2010Match-

junipermx2020Match-

junipermx204Match-

junipermx240Match-

junipermx40Match-

junipermx480Match-

junipermx5Match-

junipermx80Match-

junipermx960Match-

CPENameOperatorVersion
juniper:junosjuniper junoslt20.2
juniper:junosjuniper junoseq20.3

CPE	Name	Operator	Version
juniper:junos	juniper junos	lt	20.2
juniper:junos	juniper junos	eq	20.3

CNA Affected

[
  {
    "vendor": "Juniper Networks",
    "product": "Junos OS",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "20.2R3-S5",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "20.3R1",
        "status": "affected",
        "lessThan": "20.3*",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "MX Series"
    ]
  }
]

References

kb.juniper.net/JSA70206

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

30.5%

JSON

Related for CVE-2023-22410

nvd1 prion1 cvelist1