CVE-2022-22180 Junos OS: EX2300 Series, EX2300-MP Series, EX3400 Series: A slow memory leak due to processing of specific IPv6 packets

🗓️ 19 Jan 2022 00:21:31Reported by juniperType

A slow memory leak in Junos OS on EX2300, EX2300-MP, EX3400 Series due to processing specific IPv6 packets may lead to a Denial of Service (DoS) by exhausting DMA memory

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2022-22180	12 Jan 202217:00	–	attackerkb
CNNVD	Juniper Networks Junos OS 代码问题漏洞	12 Jan 202200:00	–	cnnvd
CNVD	Juniper Networks Junos OS Denial of Service Vulnerability (CNVD-2022-06682)	17 Jan 202200:00	–	cnvd
CVE	CVE-2022-22180	19 Jan 202200:21	–	cve
EUVD	EUVD-2022-27327	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA11286)	12 Jan 202200:00	–	nessus
NVD	CVE-2022-22180	19 Jan 202201:15	–	nvd
OSV	CVE-2022-22180	19 Jan 202201:15	–	osv
Prion	Design/Logic Flaw	19 Jan 202201:15	–	prion

[
  {
    "platforms": [
      "EX2300 Series, EX2300-MP Series, EX3400 Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "18.4R2-S10, 18.4R3-S10",
        "status": "affected",
        "version": "18.4",
        "versionType": "custom"
      },
      {
        "lessThan": "19.1R3-S7",
        "status": "affected",
        "version": "19.1",
        "versionType": "custom"
      },
      {
        "lessThan": "19.2R1-S8, 19.2R3-S4",
        "status": "affected",
        "version": "19.2",
        "versionType": "custom"
      },
      {
        "lessThan": "19.3R3-S5",
        "status": "affected",
        "version": "19.3",
        "versionType": "custom"
      },
      {
        "lessThan": "19.4R3-S7",
        "status": "affected",
        "version": "19.4",
        "versionType": "custom"
      },
      {
        "lessThan": "20.1R3-S3",
        "status": "affected",
        "version": "20.1",
        "versionType": "custom"
      },
      {
        "lessThan": "20.2R3-S3",
        "status": "affected",
        "version": "20.2",
        "versionType": "custom"
      },
      {
        "lessThan": "20.3R3-S2",
        "status": "affected",
        "version": "20.3",
        "versionType": "custom"
      },
      {
        "lessThan": "20.4R3-S1",
        "status": "affected",
        "version": "20.4",
        "versionType": "custom"
      },
      {
        "lessThan": "21.1R2-S2, 21.1R3",
        "status": "affected",
        "version": "21.1",
        "versionType": "custom"
      },
      {
        "lessThan": "21.2R1-S2, 21.2R2",
        "status": "affected",
        "version": "21.2",
        "versionType": "custom"
      },
      {
        "lessThan": "21.3R1-S1, 21.3R2",
        "status": "affected",
        "version": "21.3",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "18.4R2-S10, 18.4R3-S10",
        "status": "unaffected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
kb	www.kb.juniper.net/JSA11286

19 Jan 2022 00:21Current

8High risk

Vulners AI Score8

CVSS 3.17.5

EPSS0.00389

CWE-754