CVE-2022-22224

An Improper Check or Handling of Exceptional Conditions vulnerability in the processing of a malformed OSPF TLV in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause the periodic packet management daemon (PPMD) process to go into an infinite loop, which in turn can cause protocols and functions reliant on PPMD such as OSPF neighbor reachability to be impacted, resulting in a sustained Denial of Service (DoS) condition. The DoS condition persists until the PPMD process is manually restarted. This issue affects: Juniper Networks Junos OS: All versions prior to 19.1R3-S9; 19.2 versions prior to 19.2R3-S5; 19.3 versions prior to 19.3R3-S3; 19.4 versions prior to 19.4R3-S9; 20.1 versions prior to 20.1R3; 20.2 versions prior to 20.2R3-S1; 20.3 versions prior to 20.3R3; 20.4 versions prior to 20.4R3; 21.1 versions prior to 21.1R2. Juniper Networks Junos OS Evolved: All versions prior to 20.4R3-S3-EVO; 21.1 versions prior to 21.1R2-EVO.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
juniperCNA
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 24%
VendorProductVersion
juniperjunos
𝑥
< 19.1
juniperjunos
19.1
juniperjunos
19.1:r1
juniperjunos
19.1:r1-s1
juniperjunos
19.1:r1-s2
juniperjunos
19.1:r1-s3
juniperjunos
19.1:r1-s4
juniperjunos
19.1:r1-s5
juniperjunos
19.1:r1-s6
juniperjunos
19.1:r2
juniperjunos
19.1:r2-s1
juniperjunos
19.1:r2-s2
juniperjunos
19.1:r2-s3
juniperjunos
19.1:r3
juniperjunos
19.1:r3-s1
juniperjunos
19.1:r3-s2
juniperjunos
19.1:r3-s3
juniperjunos
19.1:r3-s4
juniperjunos
19.1:r3-s5
juniperjunos
19.1:r3-s6
juniperjunos
19.1:r3-s7
juniperjunos
19.1:r3-s8
juniperjunos
19.2
juniperjunos
19.2:r1
juniperjunos
19.2:r1-s1
juniperjunos
19.2:r1-s2
juniperjunos
19.2:r1-s3
juniperjunos
19.2:r1-s4
juniperjunos
19.2:r1-s5
juniperjunos
19.2:r1-s6
juniperjunos
19.2:r1-s7
juniperjunos
19.2:r1-s8
juniperjunos
19.2:r1-s9
juniperjunos
19.2:r2
juniperjunos
19.2:r2-s1
juniperjunos
19.2:r3
juniperjunos
19.2:r3-s1
juniperjunos
19.2:r3-s2
juniperjunos
19.2:r3-s3
juniperjunos
19.2:r3-s4
juniperjunos
19.3
juniperjunos
19.3:r1
juniperjunos
19.3:r1-s1
juniperjunos
19.3:r2
juniperjunos
19.3:r2-s1
juniperjunos
19.3:r2-s2
juniperjunos
19.3:r2-s3
juniperjunos
19.3:r2-s4
juniperjunos
19.3:r2-s5
juniperjunos
19.3:r2-s6
juniperjunos
19.3:r3
juniperjunos
19.3:r3-s1
juniperjunos
19.3:r3-s2
juniperjunos
19.4
juniperjunos
19.4
juniperjunos
19.4:r1
juniperjunos
19.4:r1-s1
juniperjunos
19.4:r1-s2
juniperjunos
19.4:r1-s3
juniperjunos
19.4:r1-s4
juniperjunos
19.4:r2
juniperjunos
19.4:r2-s1
juniperjunos
19.4:r2-s2
juniperjunos
19.4:r2-s3
juniperjunos
19.4:r2-s4
juniperjunos
19.4:r2-s5
juniperjunos
19.4:r2-s6
juniperjunos
19.4:r3
juniperjunos
19.4:r3-s1
juniperjunos
19.4:r3-s2
juniperjunos
19.4:r3-s3
juniperjunos
19.4:r3-s4
juniperjunos
19.4:r3-s5
juniperjunos
19.4:r3-s6
juniperjunos
19.4:r3-s7
juniperjunos
19.4:r3-s8
juniperjunos
20.1
juniperjunos
20.1:r1
juniperjunos
20.1:r1-s1
juniperjunos
20.1:r1-s2
juniperjunos
20.1:r1-s3
juniperjunos
20.1:r1-s4
juniperjunos
20.1:r2
juniperjunos
20.1:r2-s1
juniperjunos
20.1:r2-s2
juniperjunos
20.2
juniperjunos
20.2:r1
juniperjunos
20.2:r1-s1
juniperjunos
20.2:r1-s2
juniperjunos
20.2:r1-s3
juniperjunos
20.2:r2
juniperjunos
20.2:r2-s1
juniperjunos
20.2:r2-s2
juniperjunos
20.2:r2-s3
juniperjunos
20.2:r3
juniperjunos
20.3
juniperjunos
20.3:r1
juniperjunos
20.3:r1-s1
juniperjunos
20.3:r1-s2
juniperjunos
20.3:r2
juniperjunos
20.3:r2-s1
juniperjunos
20.4
juniperjunos
20.4:r1
juniperjunos
20.4:r1-s1
juniperjunos
20.4:r2
juniperjunos
20.4:r2-s1
juniperjunos
20.4:r2-s2
juniperjunos
21.1
juniperjunos
21.1:r1
juniperjunos
21.1:r1-s1
juniperjunos_os_evolved
𝑥
< 20.4
juniperjunos_os_evolved
20.4
juniperjunos_os_evolved
20.4:r1
juniperjunos_os_evolved
20.4:r1-s1
juniperjunos_os_evolved
20.4:r1-s2
juniperjunos_os_evolved
20.4:r2
juniperjunos_os_evolved
20.4:r2-s1
juniperjunos_os_evolved
20.4:r2-s2
juniperjunos_os_evolved
20.4:r2-s3
juniperjunos_os_evolved
20.4:r3
juniperjunos_os_evolved
20.4:r3-s1
juniperjunos_os_evolved
20.4:r3-s2
juniperjunos_os_evolved
21.1
juniperjunos_os_evolved
21.1:r1
juniperjunos_os_evolved
21.1:r1-s1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://kb.juniper.net/JSA69874
https://kb.juniper.net/JSA69874