CVE-2022-22192
Junos OS Evolved: PTX Series: An attacker can cause a kernel panic by sending a malformed TCP packet to the device
In short
A flaw in Juniper PTX routers allows attackers to crash the device by sending malformed TCP packets to specific ports (BGP, LDP, MSDP). This causes service unavailability without requiring authentication.
Technical detail
Improper input validation in the Junos OS Evolved kernel fails to correctly parse malformed TCP packets destined to BGP, LDP, or MSDP ports on affected PTX models (PTX10004, PTX10008, PTX10016), triggering a kernel panic. Network-based unauthenticated attack vector with high availability impact across multiple OS Evolved versions (20.4, 21.3, 21.4, 22.1).
Summary generated and translated by AI from the official description.
An Improper Validation of Syntactic Correctness of Input vulnerability in the kernel of Juniper Networks Junos OS Evolved on PTX series allows a network-based, unauthenticated attacker to cause a Denial of Service (DoS). When an incoming TCP packet destined to the device is malformed there is a possibility of a kernel panic. Only TCP packets destined to the ports for BGP, LDP and MSDP can trigger this. This issue only affects PTX10004, PTX10008, PTX10016. No other PTX Series devices or other platforms are affected. This issue affects Juniper Networks Junos OS Evolved: 20.4-EVO versions prior to 20.4R3-S4-EVO; 21.3-EVO versions prior to 21.3R3-EVO; 21.4-EVO versions prior to 21.4R3-EVO; 22.1-EVO versions prior to 22.1R2-EVO. This issue does not affect Juniper Networks Junos OS Evolved versions prior to 20.4R1-EVO.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
Juniper Networks · Junos OS EvolvedWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://kb.juniper.net/JSA69915