CVE-2022-22183

An Improper Access Control vulnerability in Juniper Networks Junos OS Evolved allows a network-based unauthenticated attacker who is able to connect to a specific open IPv4 port, which in affected releases should otherwise be unreachable, to cause the CPU to consume all resources as more traffic is sent to the port to create a Denial of Service (DoS) condition. Continued receipt and processing of these packets will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS Evolved 20.4 versions prior to 20.4R3-S2-EVO; 21.1 versions prior to 21.1R3-S1-EVO; 21.2 versions prior to 21.2R3-EVO; 21.3 versions prior to 21.3R2-EVO; 21.4 versions prior to 21.4R2-EVO. This issue does not affect Junos OS.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
juniperCNA
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
VendorProductVersion
juniperjunos_os_evolved
20.4:r1
juniperjunos_os_evolved
20.4:r1-s1
juniperjunos_os_evolved
20.4:r1-s2
juniperjunos_os_evolved
20.4:r2
juniperjunos_os_evolved
20.4:r2-s1
juniperjunos_os_evolved
20.4:r2-s2
juniperjunos_os_evolved
20.4:r2-s3
juniperjunos_os_evolved
20.4:r3
juniperjunos_os_evolved
20.4:r3-s1
juniperjunos_os_evolved
21.1:r1
juniperjunos_os_evolved
21.1:r1-s1
juniperjunos_os_evolved
21.1:r2
juniperjunos_os_evolved
21.1:r3
juniperjunos_os_evolved
21.2:r1
juniperjunos_os_evolved
21.2:r1-s1
juniperjunos_os_evolved
21.2:r1-s2
juniperjunos_os_evolved
21.2:r2
juniperjunos_os_evolved
21.2:r2-s1
juniperjunos_os_evolved
21.2:r2-s2
juniperjunos_os_evolved
21.3:r1
juniperjunos_os_evolved
21.3:r1-s1
juniperjunos_os_evolved
21.4:r1
juniperjunos_os_evolved
21.4:r1-s1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://kb.juniper.net/JSA69516
https://kb.juniper.net/JSA69516