343 matches found
CVE-2022-22233
An Unchecked Return Value to NULL Pointer Dereference vulnerability in Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privileges to cause a Denial of Service DoS. In Segment Routing SR to Label Distribution Protocol L...
CVE-2022-22230
An Improper Input Validation vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent unauthenticated attacker to cause DoS Denial of Service. If another router generates more than one specific valid OSPFv3 LSA then rpd will crash while...
CVE-2022-22225
A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated attacker with an established BGP session to cause a Denial of Service DoS. In a BGP multipath scenario, when one of the...
CVE-2022-22208
A Use After Free vulnerability in the Routing Protocol Daemon rdp of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to cause Denial of Service DoS. When a BGP session flap happens, a Use After Free of a memory location that was assigned to another...
CVE-2022-22220
A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in Routing Protocol Daemon rpd of Juniper Networks Junos OS, Junos OS Evolved allows a network-based unauthenticated attacker to cause a Denial of Service DoS. When a BGP flow route with redirect IP extended community is received, an...
Race condition
A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated attacker with an established BGP session to cause a Denial of Service DoS. In a BGP multipath scenario, when one of the...
Input validation
An Improper Validation of Specified Type of Input vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS allows an attacker to cause an RPD memory leak leading to a Denial of Service DoS. This memory leak only occurs when the attacker's packets are destined to any configure...
Race condition
A Use After Free vulnerability in the Routing Protocol Daemon rdp of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to cause Denial of Service DoS. When a BGP session flap happens, a Use After Free of a memory location that was assigned to another...
CVE-2022-22240 Junos OS and Junos OS Evolved: An rpd memory leak might be observed while running a specific cli command in a RIB sharding scenario
An Allocation of Resources Without Limits or Throttling and a Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated low privileged attacker to cause a Denial of Sevice Do...
CVE-2022-22240
CVE-2022-22240 affects Juniper Networks Junos OS and Junos OS Evolved. The vulnerability is an rpd memory issue caused by Allocation of Resources Without Limits or Throttling and a Missing Release of Memory after Effective Lifetime, leading to a potential Denial of Service when running a specific...
CVE-2022-22238 Junos OS and Junos OS Evolved: The rpd process will crash when a malformed incoming RESV message is processed
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial of Service DoS. When an incoming RESV message corresponding to a protected LSP ...
CVE-2022-22233 Junos OS and Junos OS Evolved: In an SR to LDP interworking scenario, with SRMS, when a specific low privileged command is issued on an ABR rpd will crash
An Unchecked Return Value to NULL Pointer Dereference vulnerability in Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privileges to cause a Denial of Service DoS. In Segment Routing SR to Label Distribution Protocol L...
CVE-2022-22233
CVE-2022-22233 concerns Juniper Networks Junos OS and Junos OS Evolved. The issue is an unchecked return value leading to a NULL pointer dereference in the Routing Protocol Daemon (rpd) when operating in an SR→LDP interworking scenario with SRMS, allowing a locally authenticated, low-privilege at...
CVE-2022-22230 Junos OS and Junos OS Evolved: RPD crash upon receipt of specific OSPFv3 LSAs
An Improper Input Validation vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent unauthenticated attacker to cause DoS Denial of Service. If another router generates more than one specific valid OSPFv3 LSA then rpd will crash while...
CVE-2022-22230
CVE-2022-22230 describes an Improper Input Validation in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. An adjacent, unauthenticated attacker can cause a Denial of Service by triggering rpd to crash when a router generates multiple specific OSPFv3 LSAs; affec...
CVE-2022-22225 Junos OS and Junos OS Evolved: In a BGP multipath scenario, when one of the contributing routes is flapping often and rapidly, rpd may crash
A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated attacker with an established BGP session to cause a Denial of Service DoS. In a BGP multipath scenario, when one of the...
CVE-2022-22225
TOCTOU race condition in Juniper Junos OS and Junos OS Evolved’s Routing Protocol Daemon (rpd) allows an unauthenticated attacker on an established BGP session to trigger a DoS by crashing rpd when a route in a BGP multipath flap scenario is a contributing route. Affected versions include Junos O...
CVE-2022-22220 Junos OS and Junos OS Evolved: Due to a race condition the rpd process can crash upon receipt of a BGP update message containing flow spec route
A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in Routing Protocol Daemon rpd of Juniper Networks Junos OS, Junos OS Evolved allows a network-based unauthenticated attacker to cause a Denial of Service DoS. When a BGP flow route with redirect IP extended community is received, an...
CVE-2022-22208 Junos OS and Junos OS Evolved: An rpd crash can occur due to memory corruption caused by flapping BGP sessions
A Use After Free vulnerability in the Routing Protocol Daemon rdp of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to cause Denial of Service DoS. When a BGP session flap happens, a Use After Free of a memory location that was assigned to another...
PT-2022-6647 · Juniper Networks · Junos Evolved +1
Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions prior to 19.2R3-S6 Juniper Networks Junos OS versions 19.3 prior to 19.3R3-S6 Juniper Networks Junos OS versions 19.4 prior to 19.4R3-S8 Juniper Networks Junos OS versions 20.1 prior to 20.1R3-S2 Juniper...