CVE-2022-22163

19.01.2022, 01:15

An Improper Input Validation vulnerability in the Juniper DHCP daemon (jdhcpd) of Juniper Networks Junos OS allows an adjacent unauthenticated attacker to cause a crash of jdhcpd and thereby a Denial of Service (DoS). If a device is configured as DHCPv6 local server and persistent storage is enabled, jdhcpd will crash when receiving a specific DHCPv6 message. This issue affects: Juniper Networks Junos OS All versions prior to 15.1R7-S11; 18.4 versions prior to 18.4R3-S9; 19.1 versions prior to 19.1R2-S3, 19.1R3-S7; 19.2 versions prior to 19.2R1-S8, 19.2R3-S3; 19.4 versions prior to 19.4R3-S5; 20.1 versions prior to 20.1R3-S1; 20.2 versions prior to 20.2R3-S2; 20.3 versions prior to 20.3R3-S1; 20.4 versions prior to 20.4R3; 21.1 versions prior to 21.1R2; 21.2 versions prior to 21.2R2.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.4 HIGH	ADJACENT_NETWORK	LOW	NONE	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
juniper	CNA	7.4 HIGH	ADJACENT_NETWORK	LOW	NONE	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 24%

Vendor	Product	Version
juniper	junos	𝑥 < 15.1
juniper	junos	15.1
juniper	junos	15.1:a1
juniper	junos	15.1:f
juniper	junos	15.1:f1
juniper	junos	15.1:f2
juniper	junos	15.1:f2-s1
juniper	junos	15.1:f2-s2
juniper	junos	15.1:f2-s3
juniper	junos	15.1:f2-s4
juniper	junos	15.1:f3
juniper	junos	15.1:f4
juniper	junos	15.1:f5
juniper	junos	15.1:f5-s7
juniper	junos	15.1:f6
juniper	junos	15.1:f6-s1
juniper	junos	15.1:f6-s10
juniper	junos	15.1:f6-s12
juniper	junos	15.1:f6-s2
juniper	junos	15.1:f6-s3
juniper	junos	15.1:f6-s4
juniper	junos	15.1:f6-s5
juniper	junos	15.1:f6-s6
juniper	junos	15.1:f6-s7
juniper	junos	15.1:f6-s8
juniper	junos	15.1:f6-s9
juniper	junos	15.1:f7
juniper	junos	15.1:r
juniper	junos	15.1:r1
juniper	junos	15.1:r2
juniper	junos	15.1:r3
juniper	junos	15.1:r4
juniper	junos	15.1:r4-s7
juniper	junos	15.1:r4-s8
juniper	junos	15.1:r4-s9
juniper	junos	15.1:r5
juniper	junos	15.1:r5-s1
juniper	junos	15.1:r5-s3
juniper	junos	15.1:r5-s5
juniper	junos	15.1:r5-s6
juniper	junos	15.1:r6
juniper	junos	15.1:r6-s1
juniper	junos	15.1:r6-s2
juniper	junos	15.1:r6-s3
juniper	junos	15.1:r6-s4
juniper	junos	15.1:r6-s6
juniper	junos	15.1:r7
juniper	junos	15.1:r7-s1
juniper	junos	15.1:r7-s10
juniper	junos	15.1:r7-s2
juniper	junos	15.1:r7-s3
juniper	junos	15.1:r7-s4
juniper	junos	15.1:r7-s5
juniper	junos	15.1:r7-s6
juniper	junos	15.1:r7-s7
juniper	junos	15.1:r7-s8
juniper	junos	15.1:r7-s9
juniper	junos	18.4
juniper	junos	18.4:r1
juniper	junos	18.4:r1-s1
juniper	junos	18.4:r1-s2
juniper	junos	18.4:r1-s3
juniper	junos	18.4:r1-s4
juniper	junos	18.4:r1-s5
juniper	junos	18.4:r1-s6
juniper	junos	18.4:r1-s7
juniper	junos	18.4:r2
juniper	junos	18.4:r2-s1
juniper	junos	18.4:r2-s2
juniper	junos	18.4:r2-s3
juniper	junos	18.4:r2-s4
juniper	junos	18.4:r2-s5
juniper	junos	18.4:r2-s6
juniper	junos	18.4:r2-s7
juniper	junos	18.4:r2-s8
juniper	junos	18.4:r3
juniper	junos	18.4:r3-s1
juniper	junos	18.4:r3-s2
juniper	junos	18.4:r3-s3
juniper	junos	18.4:r3-s4
juniper	junos	18.4:r3-s5
juniper	junos	18.4:r3-s6
juniper	junos	18.4:r3-s7
juniper	junos	18.4:r3-s8
juniper	junos	19.1
juniper	junos	19.1:r1
juniper	junos	19.1:r1-s1
juniper	junos	19.1:r1-s2
juniper	junos	19.1:r1-s3
juniper	junos	19.1:r1-s4
juniper	junos	19.1:r1-s5
juniper	junos	19.1:r1-s6
juniper	junos	19.1:r2
juniper	junos	19.1:r2-s1
juniper	junos	19.1:r2-s2
juniper	junos	19.1:r3
juniper	junos	19.1:r3-s1
juniper	junos	19.1:r3-s2
juniper	junos	19.1:r3-s3
juniper	junos	19.1:r3-s4
juniper	junos	19.1:r3-s5
juniper	junos	19.1:r3-s6
juniper	junos	19.2
juniper	junos	19.2:r1
juniper	junos	19.2:r1-s1
juniper	junos	19.2:r1-s2
juniper	junos	19.2:r1-s3
juniper	junos	19.2:r1-s4
juniper	junos	19.2:r1-s5
juniper	junos	19.2:r1-s6
juniper	junos	19.2:r1-s7
juniper	junos	19.2:r2
juniper	junos	19.2:r2-s1
juniper	junos	19.2:r3
juniper	junos	19.2:r3-s1
juniper	junos	19.2:r3-s2
juniper	junos	19.4
juniper	junos	19.4:r1
juniper	junos	19.4:r1-s1
juniper	junos	19.4:r1-s2
juniper	junos	19.4:r1-s3
juniper	junos	19.4:r1-s4
juniper	junos	19.4:r2
juniper	junos	19.4:r2-s1
juniper	junos	19.4:r2-s2
juniper	junos	19.4:r2-s3
juniper	junos	19.4:r2-s4
juniper	junos	19.4:r2-s5
juniper	junos	19.4:r3
juniper	junos	19.4:r3-s1
juniper	junos	19.4:r3-s2
juniper	junos	19.4:r3-s3
juniper	junos	19.4:r3-s4
juniper	junos	20.1
juniper	junos	20.1:r1
juniper	junos	20.1:r1-s1
juniper	junos	20.1:r1-s2
juniper	junos	20.1:r1-s3
juniper	junos	20.1:r1-s4
juniper	junos	20.1:r2
juniper	junos	20.1:r2-s1
juniper	junos	20.1:r2-s2
juniper	junos	20.1:r3
juniper	junos	20.2
juniper	junos	20.2:r1
juniper	junos	20.2:r1-s1
juniper	junos	20.2:r1-s2
juniper	junos	20.2:r1-s3
juniper	junos	20.2:r2
juniper	junos	20.2:r2-s1
juniper	junos	20.2:r2-s2
juniper	junos	20.2:r2-s3
juniper	junos	20.2:r3
juniper	junos	20.2:r3-s1
juniper	junos	20.3
juniper	junos	20.3:r1
juniper	junos	20.3:r1-s1
juniper	junos	20.3:r2
juniper	junos	20.3:r2-s1
juniper	junos	20.3:r3
juniper	junos	20.4
juniper	junos	20.4:r1
juniper	junos	20.4:r1-s1
juniper	junos	20.4:r2
juniper	junos	20.4:r2-s1
juniper	junos	20.4:r2-s2
juniper	junos	21.1
juniper	junos	21.1:r1
juniper	junos	21.1:r1-s1
juniper	junos	21.2
juniper	junos	21.2:r1
juniper	junos	21.2:r1-s1
juniper	junos	21.2:r1-s2

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

https://kb.juniper.net/JSA11271