CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/SC:N/VI:N/SI:N/VA:H/SA:L
EPSS
Percentile
17.7%
An Improper Check for Unusual or Exceptional Conditions vulnerability in the chassis management daemon (chassisd) of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a
Denial-of-Service (DoS).
If an attempt is made to access specific sensors on platforms not supporting these sensors, either via GRPC or netconf, chassisd will crash and restart leading to a restart of all FPCs and thereby a complete outage.
This issue affects Junos OS:
This issue does not affect Junos OS versions earlier than 21.4.
Vendor | Product | Version | CPE |
---|---|---|---|
juniper | junos | 21.4 | cpe:2.3:o:juniper:junos:21.4:r3:*:*:*:*:*:* |
juniper | junos | 21.4 | cpe:2.3:o:juniper:junos:21.4:r3-s1:*:*:*:*:*:* |
juniper | junos | 21.4 | cpe:2.3:o:juniper:junos:21.4:r3-s2:*:*:*:*:*:* |
juniper | junos | 21.4 | cpe:2.3:o:juniper:junos:21.4:r3-s3:*:*:*:*:*:* |
juniper | junos | 21.4 | cpe:2.3:o:juniper:junos:21.4:r3-s4:*:*:*:*:*:* |
juniper | junos | 21.1 | cpe:2.3:o:juniper:junos:21.1:r3:*:*:*:*:*:* |
juniper | junos | 21.1 | cpe:2.3:o:juniper:junos:21.1:r3-s1:*:*:*:*:*:* |
juniper | junos | 21.1 | cpe:2.3:o:juniper:junos:21.1:r3-s2:*:*:*:*:*:* |
juniper | junos | 21.1 | cpe:2.3:o:juniper:junos:21.1:r3-s3:*:*:*:*:*:* |
juniper | junos | 22.2 | cpe:2.3:o:juniper:junos:22.2:r2:*:*:*:*:*:* |
[
{
"defaultStatus": "unaffected",
"product": "Junos OS",
"vendor": "Juniper Networks",
"versions": [
{
"lessThan": "21.4R3-S5",
"status": "affected",
"version": "21.4R3",
"versionType": "semver"
},
{
"lessThan": "22.1R3-S4",
"status": "affected",
"version": "22.1R3",
"versionType": "semver"
},
{
"lessThan": "22.2R3",
"status": "affected",
"version": "22.2R2",
"versionType": "semver"
},
{
"lessThan": "22.3R2-S2, 22.3R3",
"status": "affected",
"version": "22.3R1",
"versionType": "semver"
},
{
"lessThan": "22.4R2",
"status": "affected",
"version": "22.4R1",
"versionType": "semver"
},
{
"lessThan": "21.4",
"status": "unaffected",
"version": "0",
"versionType": "semver"
}
]
}
]
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/SC:N/VI:N/SI:N/VA:H/SA:L
EPSS
Percentile
17.7%