Lucene search
HistoryOct 13, 2023 - 12:15 a.m.
CVE-2023-44197
out-of-bounds write
juniper networks
junos os
denial of service
bgp route updates
unauthenticated attacker
cve-2023-44197
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
23.6%
An Out-of-Bounds Write vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS).
On all Junos OS and Junos OS Evolved devices an rpd crash and restart can occur while processing BGP route updates received over an established BGP session. This specific issue is observed for BGP routes learned via a peer which is configured with a BGP import policy that has hundreds of terms matching IPv4 and/or IPv6 prefixes.
This issue affects Juniper Networks Junos OS:
- All versions prior to 20.4R3-S8;
- 21.1 version 21.1R1 and later versions;
- 21.2 versions prior to 21.2R3-S2;
- 21.3 versions prior to 21.3R3-S5;
- 21.4 versions prior to 21.4R2-S1, 21.4R3-S5.
This issue affects Juniper Networks Junos OS Evolved:
- All versions prior to 20.4R3-S8-EVO;
- 21.1-EVO version 21.1R1-EVO and later versions;
- 21.2-EVO versions prior to 21.2R3-S2-EVO;
- 21.3-EVO version 21.3R1-EVO and later versions;
- 21.4-EVO versions prior to 21.4R2-S1-EVO, 21.4R3-S5-EVO.
Affected configurations
Node
juniperjunosRange<20.4
ORjuniperjunosMatch20.4-
ORjuniperjunosMatch20.4r1
ORjuniperjunosMatch20.4r1-s1
ORjuniperjunosMatch20.4r2
ORjuniperjunosMatch20.4r2-s1
ORjuniperjunosMatch20.4r2-s2
ORjuniperjunosMatch20.4r3
ORjuniperjunosMatch20.4r3-s1
ORjuniperjunosMatch20.4r3-s2
ORjuniperjunosMatch20.4r3-s3
ORjuniperjunosMatch20.4r3-s4
ORjuniperjunosMatch20.4r3-s5
ORjuniperjunosMatch20.4r3-s6
ORjuniperjunosMatch20.4r3-s7
ORjuniperjunosMatch21.1r1
ORjuniperjunosMatch21.1r1-s1
ORjuniperjunosMatch21.1r2
ORjuniperjunosMatch21.1r2-s1
ORjuniperjunosMatch21.1r2-s2
ORjuniperjunosMatch21.1r3
ORjuniperjunosMatch21.1r3-s1
ORjuniperjunosMatch21.1r3-s2
ORjuniperjunosMatch21.1r3-s3
ORjuniperjunosMatch21.1r3-s4
ORjuniperjunosMatch21.1r3-s5
ORjuniperjunosMatch21.2-
ORjuniperjunosMatch21.2r1
ORjuniperjunosMatch21.2r1-s1
ORjuniperjunosMatch21.2r1-s2
ORjuniperjunosMatch21.2r2
ORjuniperjunosMatch21.2r2-s1
ORjuniperjunosMatch21.2r2-s2
ORjuniperjunosMatch21.2r3
ORjuniperjunosMatch21.2r3-s1
ORjuniperjunosMatch21.3-
ORjuniperjunosMatch21.3r1
ORjuniperjunosMatch21.3r1-s1
ORjuniperjunosMatch21.3r1-s2
ORjuniperjunosMatch21.3r2
ORjuniperjunosMatch21.3r2-s1
ORjuniperjunosMatch21.3r2-s2
ORjuniperjunosMatch21.3r3
ORjuniperjunosMatch21.3r3-s1
ORjuniperjunosMatch21.3r3-s2
ORjuniperjunosMatch21.3r3-s3
ORjuniperjunosMatch21.3r3-s4
ORjuniperjunosMatch21.4-
ORjuniperjunosMatch21.4r1
ORjuniperjunosMatch21.4r1-s1
ORjuniperjunosMatch21.4r1-s2
ORjuniperjunosMatch21.4r2
ORjuniperjunosMatch21.4r3
ORjuniperjunosMatch21.4r3-s1
ORjuniperjunosMatch21.4r3-s2
ORjuniperjunosMatch21.4r3-s3
ORjuniperjunosMatch21.4r3-s4
ORjuniperjunos_os_evolvedRange<20.4
ORjuniperjunos_os_evolvedMatch20.4-
ORjuniperjunos_os_evolvedMatch20.4r1
ORjuniperjunos_os_evolvedMatch20.4r1-s1
ORjuniperjunos_os_evolvedMatch20.4r1-s2
ORjuniperjunos_os_evolvedMatch20.4r2
ORjuniperjunos_os_evolvedMatch20.4r2-s1
ORjuniperjunos_os_evolvedMatch20.4r2-s2
ORjuniperjunos_os_evolvedMatch20.4r2-s3
ORjuniperjunos_os_evolvedMatch20.4r3
ORjuniperjunos_os_evolvedMatch20.4r3-s1
ORjuniperjunos_os_evolvedMatch20.4r3-s2
ORjuniperjunos_os_evolvedMatch20.4r3-s3
ORjuniperjunos_os_evolvedMatch20.4r3-s4
ORjuniperjunos_os_evolvedMatch20.4r3-s5
ORjuniperjunos_os_evolvedMatch20.4r3-s6
ORjuniperjunos_os_evolvedMatch20.4r3-s7
ORjuniperjunos_os_evolvedMatch21.1r1
ORjuniperjunos_os_evolvedMatch21.1r1-s1
ORjuniperjunos_os_evolvedMatch21.1r2
ORjuniperjunos_os_evolvedMatch21.1r3
ORjuniperjunos_os_evolvedMatch21.1r3-s1
ORjuniperjunos_os_evolvedMatch21.1r3-s2
ORjuniperjunos_os_evolvedMatch21.1r3-s3
ORjuniperjunos_os_evolvedMatch21.2-
ORjuniperjunos_os_evolvedMatch21.2r1
ORjuniperjunos_os_evolvedMatch21.2r1-s1
ORjuniperjunos_os_evolvedMatch21.2r1-s2
ORjuniperjunos_os_evolvedMatch21.2r2
ORjuniperjunos_os_evolvedMatch21.2r2-s1
ORjuniperjunos_os_evolvedMatch21.2r2-s2
ORjuniperjunos_os_evolvedMatch21.2r3
ORjuniperjunos_os_evolvedMatch21.2r3-s1
ORjuniperjunos_os_evolvedMatch21.3r1
ORjuniperjunos_os_evolvedMatch21.3r1-s1
ORjuniperjunos_os_evolvedMatch21.3r2
ORjuniperjunos_os_evolvedMatch21.3r2-s1
ORjuniperjunos_os_evolvedMatch21.3r2-s2
ORjuniperjunos_os_evolvedMatch21.3r3
ORjuniperjunos_os_evolvedMatch21.3r3-s1
ORjuniperjunos_os_evolvedMatch21.3r3-s2
ORjuniperjunos_os_evolvedMatch21.3r3-s3
ORjuniperjunos_os_evolvedMatch21.3r3-s4
ORjuniperjunos_os_evolvedMatch21.4-
ORjuniperjunos_os_evolvedMatch21.4r1
ORjuniperjunos_os_evolvedMatch21.4r1-s1
ORjuniperjunos_os_evolvedMatch21.4r1-s2
ORjuniperjunos_os_evolvedMatch21.4r2
ORjuniperjunos_os_evolvedMatch21.4r3
ORjuniperjunos_os_evolvedMatch21.4r3-s1
ORjuniperjunos_os_evolvedMatch21.4r3-s2
ORjuniperjunos_os_evolvedMatch21.4r3-s3
ORjuniperjunos_os_evolvedMatch21.4r3-s4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| juniper | junos | * | cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:* |
| juniper | junos | 20.4 | cpe:2.3:o:juniper:junos:20.4:-:*:*:*:*:*:* |
| juniper | junos | 20.4 | cpe:2.3:o:juniper:junos:20.4:r1:*:*:*:*:*:* |
| juniper | junos | 20.4 | cpe:2.3:o:juniper:junos:20.4:r1-s1:*:*:*:*:*:* |
| juniper | junos | 20.4 | cpe:2.3:o:juniper:junos:20.4:r2:*:*:*:*:*:* |
| juniper | junos | 20.4 | cpe:2.3:o:juniper:junos:20.4:r2-s1:*:*:*:*:*:* |
| juniper | junos | 20.4 | cpe:2.3:o:juniper:junos:20.4:r2-s2:*:*:*:*:*:* |
| juniper | junos | 20.4 | cpe:2.3:o:juniper:junos:20.4:r3:*:*:*:*:*:* |
| juniper | junos | 20.4 | cpe:2.3:o:juniper:junos:20.4:r3-s1:*:*:*:*:*:* |
| juniper | junos | 20.4 | cpe:2.3:o:juniper:junos:20.4:r3-s2:*:*:*:*:*:* |
References
Related
prion
prion
Cross site scripting
2023-10-13 00:15:00
vulnrichment
vulnrichment
cvelist
cvelist
cve
cve
CVE-2023-44197
2023-10-13 00:15:12
nessus
nessus
Juniper Junos OS Vulnerability (JSA73163)
2023-10-11 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
23.6%
Related for NVD:CVE-2023-44197