An Incorrect Comparison vulnerability in PFE of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to cause a Denial of Service (DoS). On QFX5000 Series, and EX4600 and EX4650 platforms, the fxpc process will crash followed by the FPC reboot upon receipt of a specific hostbound packet. Continued receipt of these specific packets will create a sustained Denial of Service (DoS) condition. This issue only affects Juniper Networks Junos OS 19.4 version 19.4R3-S4.
References
| Link | Resource |
|---|---|
| https://kb.juniper.net/JSA69707 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
27 Jul 2022, 19:07
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
| First Time |
Juniper
Juniper qfx5120 Juniper qfx5220 Juniper qfx5700 Juniper ex4600 Juniper junos Juniper qfx5210 Juniper qfx5110 Juniper ex4650 Juniper qfx5100 Juniper qfx5200 Juniper qfx5130 |
|
| References | (CONFIRM) https://kb.juniper.net/JSA69707 - Vendor Advisory | |
| CPE | cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5210:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5120:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5220:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos:19.4:r3-s4:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5700:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4600:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5130:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:ex4650:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5100:-:*:*:*:*:*:*:* |
20 Jul 2022, 15:36
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-07-20 15:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-22203
Mitre link : CVE-2022-22203
CVE.ORG link : CVE-2022-22203
JSON object : View
Products Affected
juniper
- qfx5130
- qfx5200
- qfx5220
- qfx5700
- junos
- qfx5120
- ex4650
- qfx5110
- qfx5100
- qfx5210
- ex4600
CWE
CWE-697
Incorrect Comparison