Lucene search

[email protected]NVD:CVE-2022-22217

HistoryJul 20, 2022 - 3:15 p.m.

CVE-2022-22217

2022-07-2015:15:09

CWE-754

[email protected]

web.nvd.nist.gov

packet forwarding engine

denial of service

mld packets

qfx10k series switches

vxlan

esi

split horizon rule

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

21.8%

JSON

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to cause a Denial of Service (DoS). The issue is caused by malformed MLD packets looping on a multi-homed Ethernet Segment Identifier (ESI) when VXLAN is configured. These MLD packets received on a multi-homed ESI are sent to the peer, and then incorrectly forwarded out the same ESI, violating the split horizon rule. This issue only affects QFX10K Series switches, including the QFX10002, QFX10008, and QFX10016. Other products and platforms are unaffected by this vulnerability. This issue affects Juniper Networks Junos OS on QFX10K Series: All versions prior to 19.1R3-S9; 19.2 versions prior to 19.2R1-S9, 19.2R3-S5; 19.3 versions prior to 19.3R3-S6; 19.4 versions prior to 19.4R2-S7, 19.4R3-S8; 20.1 versions prior to 20.1R3-S4; 20.2 versions prior to 20.2R3-S4; 20.3 versions prior to 20.3R3-S2; 20.4 versions prior to 20.4R3-S2; 21.1 versions prior to 21.1R3; 21.2 versions prior to 21.2R2-S1, 21.2R3; 21.3 versions prior to 21.3R2.

Affected configurations

Nvd

Node

juniperjunosRange<19.1

juniperjunosMatch19.1-

juniperjunosMatch19.1r1

juniperjunosMatch19.1r1-s1

juniperjunosMatch19.1r1-s2

juniperjunosMatch19.1r1-s3

juniperjunosMatch19.1r1-s4

juniperjunosMatch19.1r1-s5

juniperjunosMatch19.1r1-s6

juniperjunosMatch19.1r2

juniperjunosMatch19.1r2-s1

juniperjunosMatch19.1r2-s2

juniperjunosMatch19.1r2-s3

juniperjunosMatch19.1r3

juniperjunosMatch19.1r3-s1

juniperjunosMatch19.1r3-s2

juniperjunosMatch19.1r3-s3

juniperjunosMatch19.1r3-s4

juniperjunosMatch19.1r3-s5

juniperjunosMatch19.1r3-s6

juniperjunosMatch19.1r3-s7

juniperjunosMatch19.1r3-s8

juniperjunosMatch19.2-

juniperjunosMatch19.2r1

juniperjunosMatch19.2r1-s1

juniperjunosMatch19.2r1-s2

juniperjunosMatch19.2r1-s3

juniperjunosMatch19.2r1-s4

juniperjunosMatch19.2r1-s5

juniperjunosMatch19.2r1-s6

juniperjunosMatch19.2r1-s7

juniperjunosMatch19.2r1-s8

juniperjunosMatch19.2r2

juniperjunosMatch19.2r2-s1

juniperjunosMatch19.2r3

juniperjunosMatch19.2r3-s1

juniperjunosMatch19.2r3-s2

juniperjunosMatch19.2r3-s3

juniperjunosMatch19.2r3-s4

juniperjunosMatch19.3-

juniperjunosMatch19.3r1

juniperjunosMatch19.3r1-s1

juniperjunosMatch19.3r2

juniperjunosMatch19.3r2-s1

juniperjunosMatch19.3r2-s2

juniperjunosMatch19.3r2-s3

juniperjunosMatch19.3r2-s4

juniperjunosMatch19.3r2-s5

juniperjunosMatch19.3r2-s6

juniperjunosMatch19.3r3

juniperjunosMatch19.3r3-s1

juniperjunosMatch19.3r3-s2

juniperjunosMatch19.3r3-s3

juniperjunosMatch19.3r3-s4

juniperjunosMatch19.3r3-s5

juniperjunosMatch19.4-

juniperjunosMatch19.4r1

juniperjunosMatch19.4r1-s1

juniperjunosMatch19.4r1-s2

juniperjunosMatch19.4r1-s3

juniperjunosMatch19.4r1-s4

juniperjunosMatch19.4r2

juniperjunosMatch19.4r2-s1

juniperjunosMatch19.4r2-s2

juniperjunosMatch19.4r2-s3

juniperjunosMatch19.4r2-s4

juniperjunosMatch19.4r2-s5

juniperjunosMatch19.4r2-s6

juniperjunosMatch19.4r3

juniperjunosMatch19.4r3-s1

juniperjunosMatch19.4r3-s2

juniperjunosMatch19.4r3-s3

juniperjunosMatch19.4r3-s4

juniperjunosMatch19.4r3-s5

juniperjunosMatch19.4r3-s6

juniperjunosMatch19.4r3-s7

juniperjunosMatch20.1-

juniperjunosMatch20.1r1

juniperjunosMatch20.1r1-s1

juniperjunosMatch20.1r1-s2

juniperjunosMatch20.1r1-s3

juniperjunosMatch20.1r1-s4

juniperjunosMatch20.1r2

juniperjunosMatch20.1r2-s1

juniperjunosMatch20.1r2-s2

juniperjunosMatch20.1r3

juniperjunosMatch20.1r3-s1

juniperjunosMatch20.1r3-s2

juniperjunosMatch20.1r3-s3

juniperjunosMatch20.2-

juniperjunosMatch20.2r1

juniperjunosMatch20.2r1-s1

juniperjunosMatch20.2r1-s2

juniperjunosMatch20.2r1-s3

juniperjunosMatch20.2r2

juniperjunosMatch20.2r2-s1

juniperjunosMatch20.2r2-s2

juniperjunosMatch20.2r2-s3

juniperjunosMatch20.2r3

juniperjunosMatch20.2r3-s1

juniperjunosMatch20.2r3-s2

juniperjunosMatch20.2r3-s3

juniperjunosMatch20.3-

juniperjunosMatch20.3r1

juniperjunosMatch20.3r1-s1

juniperjunosMatch20.3r1-s2

juniperjunosMatch20.3r2

juniperjunosMatch20.3r2-s1

juniperjunosMatch20.3r3

juniperjunosMatch20.3r3-s1

juniperjunosMatch20.4-

juniperjunosMatch20.4r1

juniperjunosMatch20.4r1-s1

juniperjunosMatch20.4r2

juniperjunosMatch20.4r2-s1

juniperjunosMatch20.4r2-s2

juniperjunosMatch20.4r3

juniperjunosMatch20.4r3-s1

juniperjunosMatch21.1-

juniperjunosMatch21.1r1

juniperjunosMatch21.1r1-s1

juniperjunosMatch21.1r2

juniperjunosMatch21.1r2-s1

juniperjunosMatch21.1r2-s2

juniperjunosMatch21.2-

juniperjunosMatch21.2r1

juniperjunosMatch21.2r1-s1

juniperjunosMatch21.2r1-s2

juniperjunosMatch21.2r2

juniperjunosMatch21.3r1

juniperjunosMatch21.3r1-s1

juniperjunosMatch21.3r1-s2

AND

juniperqfx10002Match-

juniperqfx10008Match-

juniperqfx10016Match-

VendorProductVersionCPE
juniperjunos*cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:*
juniperjunos19.1cpe:2.3:o:juniper:junos:19.1:-:*:*:*:*:*:*
juniperjunos19.1cpe:2.3:o:juniper:junos:19.1:r1:*:*:*:*:*:*
juniperjunos19.1cpe:2.3:o:juniper:junos:19.1:r1-s1:*:*:*:*:*:*
juniperjunos19.1cpe:2.3:o:juniper:junos:19.1:r1-s2:*:*:*:*:*:*
juniperjunos19.1cpe:2.3:o:juniper:junos:19.1:r1-s3:*:*:*:*:*:*
juniperjunos19.1cpe:2.3:o:juniper:junos:19.1:r1-s4:*:*:*:*:*:*
juniperjunos19.1cpe:2.3:o:juniper:junos:19.1:r1-s5:*:*:*:*:*:*
juniperjunos19.1cpe:2.3:o:juniper:junos:19.1:r1-s6:*:*:*:*:*:*
juniperjunos19.1cpe:2.3:o:juniper:junos:19.1:r2:*:*:*:*:*:*

Vendor	Product	Version	CPE
juniper	junos	*	cpe:2.3:o:juniper:junos::::::::
juniper	junos	19.1	cpe:2.3:o:juniper:junos:19.1:-::::::
juniper	junos	19.1	cpe:2.3:o:juniper:junos:19.1:r1::::::
juniper	junos	19.1	cpe:2.3:o:juniper:junos:19.1:r1-s1::::::
juniper	junos	19.1	cpe:2.3:o:juniper:junos:19.1:r1-s2::::::
juniper	junos	19.1	cpe:2.3:o:juniper:junos:19.1:r1-s3::::::
juniper	junos	19.1	cpe:2.3:o:juniper:junos:19.1:r1-s4::::::
juniper	junos	19.1	cpe:2.3:o:juniper:junos:19.1:r1-s5::::::
juniper	junos	19.1	cpe:2.3:o:juniper:junos:19.1:r1-s6::::::
juniper	junos	19.1	cpe:2.3:o:juniper:junos:19.1:r2::::::

Rows per page:

1-10 of 1351

References

kb.juniper.net/JSA69721

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

21.8%

JSON

Related for NVD:CVE-2022-22217

nessus1 cvelist1 prion1 cve1