CVE-2022-22194 — Improper Check for Unusual or Exceptional Conditions in Networks Junos OS Evolved

CWE-754 — Improper Check for Unusual or Exceptional Conditions4 documents4 sources

Severity

7.5HIGHNVD

EPSS

0.2%

top 63.15%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Evolved Juniper Junos OS Evolved

Timeline

PublishedApr 14

Latest updateApr 15

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in the packetIO daemon of Juniper Networks Junos OS Evolved on PTX10003, PTX10004, and PTX10008 allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). Continued receipt of these crafted packets will cause a sustained Denial of Service condition. This issue affects Juniper Networks Junos OS Evolved all versions prior to 20.4R2-S3-EVO on PTX10003, PTX10004, and PTX10008. This issue does not affect:…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5juniper_networks/junos_os_evolvedunspecified — 20.4R2-S3-EVO, 20.4R3-EVO

▶NVDjuniper/junos_os_evolved< 20.4+1

🔴Vulnerability Details

GHSA

GHSA-242f-wggc-9x23: An Improper Check for Unusual or Exceptional Conditions vulnerability in the packetIO daemon of Juniper Networks Junos OS Evolved on PTX10003, PTX1000↗2022-04-15

▶

CVEList

Junos OS Evolved: PTX series: An attacker sending a crafted GRE packet will cause the PFE to restart↗2022-04-14

▶

📋Vendor Advisories

Juniper

CVE-2022-22194: An Improper Check for Unusual or Exceptional Conditions vulnerability in the packetIO daemon of Juniper Networks Junos OS Evolved on PTX10003, PTX1000↗2022-04-14

▶