cbcvebase.
CVE-2023-28976
published 2023-04-17

CVE-2023-28976: An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on MX Series allows an…

high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on MX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). If specific traffic is received on MX Series and its rate exceeds the respective DDoS protection limit the ingress PFE will crash and restart. Continued receipt of this traffic will create a sustained DoS condition. This issue affects Juniper Networks Junos OS on MX Series: All versions prior to 19.1R3-S10; 19.2 versions prior to 19.2R3-S7; 19.3 versions prior to 19.3R3-S8; 19.4 versions prior to 19.4R3-S11; 20.2 versions prior to 20.2R3-S5; 20.4 versions prior to 20.4R3-S6; 21.1 versions prior to 21.1R3-S5; 21.2 versions prior to 21.2R3-S4; 21.3 versions prior to 21.3R3; 21.4 versions prior to 21.4R3; 22.1 versions prior to 22.1R2.

Affected

25 ranges
VendorProductVersion rangeFixed in
juniperjunos< 19.119.1
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos_os
junipermx_series
juniper_networksjunos_os>= 19.2 < 19.2R3-S719.2R3-S7
juniper_networksjunos_os>= 19.3 < 19.3R3-S819.3R3-S8
juniper_networksjunos_os>= 19.4 < 19.4R3-S1119.4R3-S11
juniper_networksjunos_os>= 20.2 < 20.2R3-S520.2R3-S5
juniper_networksjunos_os>= 20.4 < 20.4R3-S620.4R3-S6
juniper_networksjunos_os>= 21.1 < 21.1R3-S521.1R3-S5
juniper_networksjunos_os>= 21.2 < 21.2R3-S421.2R3-S4
juniper_networksjunos_os>= 21.3 < 21.3R321.3R3
juniper_networksjunos_os>= 21.4 < 21.4R321.4R3
juniper_networksjunos_os>= 22.1 < 22.1R222.1R2
juniper_networksjunos_os>= unspecified < 19.1R3-S1019.1R3-S10