CVE-2023-36832 Junos OS: MX Series: PFE crash upon receipt of specific packet destined to an AMS interface

🗓️ 14 Jul 2023 15:56:44Reported by juniperType

Junos OS PFE crash on specific packet receip

Reporter	Title	Published	Views	Family All 12
BDU FSTEC	The vulnerability of the Aggregated Multiservices (AMS) interface of Juniper Networks’ Junos operating system in Junos MX devices allows a attacker to cause service failure.	1 Aug 202300:00	–	bdu_fstec
Circl	CVE-2023-36832	14 Jul 202320:28	–	circl
CNNVD	Juniper Networks Junos OS MX 安全漏洞	14 Jul 202300:00	–	cnnvd
CVE	CVE-2023-36832	14 Jul 202315:56	–	cve
EUVD	EUVD-2023-40752	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA71639)	15 Aug 202300:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper JunOS	13 Jul 202300:00	–	ncsc
NVD	CVE-2023-36832	14 Jul 202316:15	–	nvd
OSV	CVE-2023-36832	14 Jul 202316:15	–	osv
Prion	Design/Logic Flaw	14 Jul 202316:15	–	prion

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "MX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "19.1R3-S10",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "lessThan": "19.2R3-S7",
        "status": "affected",
        "version": "19.2",
        "versionType": "custom"
      },
      {
        "lessThan": "19.3R3-S8",
        "status": "affected",
        "version": "19.3",
        "versionType": "custom"
      },
      {
        "lessThan": "19.4R3-S12",
        "status": "affected",
        "version": "19.4",
        "versionType": "custom"
      },
      {
        "lessThan": "20.2R3-S8",
        "status": "affected",
        "version": "20.2",
        "versionType": "custom"
      },
      {
        "lessThan": "20.4R3-S7",
        "status": "affected",
        "version": "20.4",
        "versionType": "custom"
      },
      {
        "lessThan": "21.1R3-S5",
        "status": "affected",
        "version": "21.1",
        "versionType": "custom"
      },
      {
        "lessThan": "21.2R3-S5",
        "status": "affected",
        "version": "21.2",
        "versionType": "custom"
      },
      {
        "lessThan": "21.3R3-S4",
        "status": "affected",
        "version": "21.3",
        "versionType": "custom"
      },
      {
        "lessThan": "21.4R3-S3",
        "status": "affected",
        "version": "21.4",
        "versionType": "custom"
      },
      {
        "lessThan": "22.1R3-S2",
        "status": "affected",
        "version": "22.1",
        "versionType": "custom"
      },
      {
        "lessThan": "22.2R3",
        "status": "affected",
        "version": "22.2",
        "versionType": "custom"
      },
      {
        "lessThan": "22.3R2-S1, 22.3R3",
        "status": "affected",
        "version": "22.3",
        "versionType": "custom"
      },
      {
        "lessThan": "22.4R1-S2, 22.4R2",
        "status": "affected",
        "version": "22.4",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA71639

14 Jul 2023 15:56Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.5

EPSS0.00263

CWE-755