CVE-2022-22211Allocation of Resources Without Limits or Throttling in Networks Junos OS Evolved

CWE-770Allocation of Resources Without Limits or Throttling6 documents6 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 43.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OS EvolvedJuniper Junos OS Evolved
Timeline
PublishedOct 18

Description

A limitless resource allocation vulnerability in FPC resources of Juniper Networks Junos OS Evolved on PTX Series allows an unprivileged attacker to cause Denial of Service (DoS). Continuously polling the SNMP jnxCosQstatTable causes the FPC to run out of GUID space, causing a Denial of Service to the FPC resources. When the FPC runs out of the GUID space, you will see the following syslog messages. The evo-aftmand-bt process is asserting. fpc1 evo-aftmand-bt[17556]: %USER-3: get_next_guid: Ran

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5juniper_networks/junos_os_evolvedunspecified20.4R3-S4-EVO+5

🔴Vulnerability Details

3
GHSA
GHSA-jqqc-3phc-2cmm: A limitless resource allocation vulnerability in FPC resources of Juniper Networks Junos OS Evolved on PTX Series allows an unprivileged attacker to c2022-10-18
CVEList
Junos OS Evolved: PTX Series: Multiple FPCs become unreachable due to continuous polling of specific SNMP OID2022-10-18
GHSA
YARP Denial of Service Vulnerability2022-04-22

📋Vendor Advisories

2
Juniper
CVE-2022-22211: A limitless resource allocation vulnerability in FPC resources of Juniper Networks Junos OS Evolved on PTX Series allows an unprivileged attacker to c2022-10-18
Microsoft
YARP Denial of Service Vulnerability2022-04-12
CVE-2022-22211 — HIGH severity | cvebase