Lucene search
+L

343 matches found

NVD
NVD
added 2022/10/18 3:15 a.m.23 views

CVE-2022-22233

An Unchecked Return Value to NULL Pointer Dereference vulnerability in Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privileges to cause a Denial of Service DoS. In Segment Routing SR to Label Distribution Protocol L...

5.5CVSS0.00171EPSS
Exploits0References1
NVD
NVD
added 2022/10/18 3:15 a.m.23 views

CVE-2022-22230

An Improper Input Validation vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent unauthenticated attacker to cause DoS Denial of Service. If another router generates more than one specific valid OSPFv3 LSA then rpd will crash while...

6.5CVSS0.003EPSS
Exploits0References1
NVD
NVD
added 2022/10/18 3:15 a.m.14 views

CVE-2022-22225

A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated attacker with an established BGP session to cause a Denial of Service DoS. In a BGP multipath scenario, when one of the...

5.9CVSS0.00444EPSS
Exploits0References1
OSV
OSV
added 2022/10/18 3:15 a.m.7 views

CVE-2022-22208

A Use After Free vulnerability in the Routing Protocol Daemon rdp of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to cause Denial of Service DoS. When a BGP session flap happens, a Use After Free of a memory location that was assigned to another...

5.9CVSS5.8AI score0.00427EPSS
Exploits0References1
NVD
NVD
added 2022/10/18 3:15 a.m.33 views

CVE-2022-22220

A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in Routing Protocol Daemon rpd of Juniper Networks Junos OS, Junos OS Evolved allows a network-based unauthenticated attacker to cause a Denial of Service DoS. When a BGP flow route with redirect IP extended community is received, an...

5.9CVSS0.00444EPSS
Exploits0References1
Prion
Prion
added 2022/10/18 3:15 a.m.22 views

Race condition

A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated attacker with an established BGP session to cause a Denial of Service DoS. In a BGP multipath scenario, when one of the...

2.6CVSS5.7AI score0.00444EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2022/10/18 3:15 a.m.19 views

Input validation

An Improper Validation of Specified Type of Input vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS allows an attacker to cause an RPD memory leak leading to a Denial of Service DoS. This memory leak only occurs when the attacker's packets are destined to any configure...

5CVSS7.4AI score0.00616EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/10/18 3:15 a.m.19 views

Race condition

A Use After Free vulnerability in the Routing Protocol Daemon rdp of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to cause Denial of Service DoS. When a BGP session flap happens, a Use After Free of a memory location that was assigned to another...

2.6CVSS5.8AI score0.00427EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2022/10/18 2:46 a.m.7 views

CVE-2022-22240 Junos OS and Junos OS Evolved: An rpd memory leak might be observed while running a specific cli command in a RIB sharding scenario

An Allocation of Resources Without Limits or Throttling and a Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated low privileged attacker to cause a Denial of Sevice Do...

5.5CVSS5.6AI score0.00193EPSS
Exploits0References1
CVE
CVE
added 2022/10/18 2:46 a.m.52 views

CVE-2022-22240

CVE-2022-22240 affects Juniper Networks Junos OS and Junos OS Evolved. The vulnerability is an rpd memory issue caused by Allocation of Resources Without Limits or Throttling and a Missing Release of Memory after Effective Lifetime, leading to a potential Denial of Service when running a specific...

5.5CVSS5.6AI score0.00193EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/10/18 2:46 a.m.25 views

CVE-2022-22238 Junos OS and Junos OS Evolved: The rpd process will crash when a malformed incoming RESV message is processed

An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial of Service DoS. When an incoming RESV message corresponding to a protected LSP ...

5.3CVSS6.7AI score0.00282EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/10/18 2:46 a.m.17 views

CVE-2022-22233 Junos OS and Junos OS Evolved: In an SR to LDP interworking scenario, with SRMS, when a specific low privileged command is issued on an ABR rpd will crash

An Unchecked Return Value to NULL Pointer Dereference vulnerability in Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privileges to cause a Denial of Service DoS. In Segment Routing SR to Label Distribution Protocol L...

5.5CVSS5.6AI score0.00171EPSS
Exploits0References1
CVE
CVE
added 2022/10/18 2:46 a.m.54 views

CVE-2022-22233

CVE-2022-22233 concerns Juniper Networks Junos OS and Junos OS Evolved. The issue is an unchecked return value leading to a NULL pointer dereference in the Routing Protocol Daemon (rpd) when operating in an SR→LDP interworking scenario with SRMS, allowing a locally authenticated, low-privilege at...

5.5CVSS5.3AI score0.00171EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2022/10/18 2:46 a.m.28 views

CVE-2022-22230 Junos OS and Junos OS Evolved: RPD crash upon receipt of specific OSPFv3 LSAs

An Improper Input Validation vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent unauthenticated attacker to cause DoS Denial of Service. If another router generates more than one specific valid OSPFv3 LSA then rpd will crash while...

6.5CVSS6.7AI score0.003EPSS
Exploits0References1
CVE
CVE
added 2022/10/18 2:46 a.m.64 views

CVE-2022-22230

CVE-2022-22230 describes an Improper Input Validation in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. An adjacent, unauthenticated attacker can cause a Denial of Service by triggering rpd to crash when a router generates multiple specific OSPFv3 LSAs; affec...

6.5CVSS6.5AI score0.003EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/18 2:46 a.m.5 views

CVE-2022-22225 Junos OS and Junos OS Evolved: In a BGP multipath scenario, when one of the contributing routes is flapping often and rapidly, rpd may crash

A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated attacker with an established BGP session to cause a Denial of Service DoS. In a BGP multipath scenario, when one of the...

5.9CVSS5.8AI score0.00444EPSS
Exploits0References1
CVE
CVE
added 2022/10/18 2:46 a.m.70 views

CVE-2022-22225

TOCTOU race condition in Juniper Junos OS and Junos OS Evolved’s Routing Protocol Daemon (rpd) allows an unauthenticated attacker on an established BGP session to trigger a DoS by crashing rpd when a route in a BGP multipath flap scenario is a contributing route. Affected versions include Junos O...

5.9CVSS5.8AI score0.00444EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/18 2:46 a.m.10 views

CVE-2022-22220 Junos OS and Junos OS Evolved: Due to a race condition the rpd process can crash upon receipt of a BGP update message containing flow spec route

A Time-of-check Time-of-use TOCTOU Race Condition vulnerability in Routing Protocol Daemon rpd of Juniper Networks Junos OS, Junos OS Evolved allows a network-based unauthenticated attacker to cause a Denial of Service DoS. When a BGP flow route with redirect IP extended community is received, an...

5.9CVSS5.7AI score0.00444EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/10/18 2:46 a.m.9 views

CVE-2022-22208 Junos OS and Junos OS Evolved: An rpd crash can occur due to memory corruption caused by flapping BGP sessions

A Use After Free vulnerability in the Routing Protocol Daemon rdp of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to cause Denial of Service DoS. When a BGP session flap happens, a Use After Free of a memory location that was assigned to another...

5.9CVSS5.8AI score0.00427EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/12 12:0 a.m.7 views

PT-2022-6647 · Juniper Networks · Junos Evolved +1

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions prior to 19.2R3-S6 Juniper Networks Junos OS versions 19.3 prior to 19.3R3-S6 Juniper Networks Junos OS versions 19.4 prior to 19.4R3-S8 Juniper Networks Junos OS versions 20.1 prior to 20.1R3-S2 Juniper...

6.5CVSS6.4AI score0.00282EPSS
Exploits0References4
Rows per page
Query Builder