Versio.io

CVE-2022-22185

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 14-04-2022 06:15
Last modified: - 21-04-2022 04:38
Total changes: - 2

Description

A vulnerability in Juniper Networks Junos OS on SRX Series, allows a network-based unauthenticated attacker to cause a Denial of Service (DoS) by sending a specific fragmented packet to the device, resulting in a flowd process crash, which is responsible for packet forwarding. Continued receipt and processing of this specific packet will create a sustained DoS condition. This issue only affects SRX Series when 'preserve-incoming-fragment-size' feature is enabled. This issue affects Juniper Networks Junos OS on SRX Series: 18.3 versions prior to 18.3R3-S6; 18.4 versions prior to 18.4R3-S10; 19.1 versions prior to 19.1R3-S7; 19.2 versions prior to 19.2R3-S4; 19.3 versions prior to 19.3R3-S4; 19.4 versions prior to 19.4R3-S6; 20.1 versions prior to 20.1R3-S2; 20.2 versions prior to 20.2R3-S3; 20.3 versions prior to 20.3R3-S1; 20.4 versions prior to 20.4R3; 21.1 versions prior to 21.1R2-S1, 21.1R3; 21.2 versions prior to 21.2R2. This issue does not affect Juniper Networks Junos OS prior to 17.3R1.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Low
Attack complexity
Network
Attack vector
High
Availability
None
Confidentiality
None
Integrity
None
Privileges required
Unchanged
Scope
None
User interaction
7.5
Base score
3.9
3.6
Exploitability score
Impact score
 

Verification logic

AND
OR
vendor=juniper AND product=junos AND version=18.3 AND update=-
vendor=juniper AND product=junos AND version=18.3 AND update=r
vendor=juniper AND product=junos AND version=18.3 AND update=r1
vendor=juniper AND product=junos AND version=18.3 AND update=r1-s1
vendor=juniper AND product=junos AND version=18.3 AND update=r1-s2
vendor=juniper AND product=junos AND version=18.3 AND update=r1-s3
vendor=juniper AND product=junos AND version=18.3 AND update=r1-s4
vendor=juniper AND product=junos AND version=18.3 AND update=r1-s5
vendor=juniper AND product=junos AND version=18.3 AND update=r1-s6
vendor=juniper AND product=junos AND version=18.3 AND update=r2
vendor=juniper AND product=junos AND version=18.3 AND update=r2-s1
vendor=juniper AND product=junos AND version=18.3 AND update=r2-s2
vendor=juniper AND product=junos AND version=18.3 AND update=r2-s3
vendor=juniper AND product=junos AND version=18.3 AND update=r2-s4
vendor=juniper AND product=junos AND version=18.3 AND update=r3
vendor=juniper AND product=junos AND version=18.3 AND update=r3-s1
vendor=juniper AND product=junos AND version=18.3 AND update=r3-s2
vendor=juniper AND product=junos AND version=18.3 AND update=r3-s3
vendor=juniper AND product=junos AND version=18.3 AND update=r3-s4
vendor=juniper AND product=junos AND version=18.3 AND update=r3-s5
vendor=juniper AND product=junos AND version=18.4 AND update=-
vendor=juniper AND product=junos AND version=18.4 AND update=r1
vendor=juniper AND product=junos AND version=18.4 AND update=r1-s1
vendor=juniper AND product=junos AND version=18.4 AND update=r1-s2
vendor=juniper AND product=junos AND version=18.4 AND update=r1-s3
vendor=juniper AND product=junos AND version=18.4 AND update=r1-s4
vendor=juniper AND product=junos AND version=18.4 AND update=r1-s5
vendor=juniper AND product=junos AND version=18.4 AND update=r1-s6
vendor=juniper AND product=junos AND version=18.4 AND update=r1-s7
vendor=juniper AND product=junos AND version=18.4 AND update=r2
vendor=juniper AND product=junos AND version=18.4 AND update=r2-s1
vendor=juniper AND product=junos AND version=18.4 AND update=r2-s2
vendor=juniper AND product=junos AND version=18.4 AND update=r2-s3
vendor=juniper AND product=junos AND version=18.4 AND update=r2-s4
vendor=juniper AND product=junos AND version=18.4 AND update=r2-s5
vendor=juniper AND product=junos AND version=18.4 AND update=r2-s6
vendor=juniper AND product=junos AND version=18.4 AND update=r2-s7
vendor=juniper AND product=junos AND version=18.4 AND update=r2-s8
vendor=juniper AND product=junos AND version=18.4 AND update=r3
vendor=juniper AND product=junos AND version=18.4 AND update=r3-s1
vendor=juniper AND product=junos AND version=18.4 AND update=r3-s2
vendor=juniper AND product=junos AND version=18.4 AND update=r3-s3
vendor=juniper AND product=junos AND version=18.4 AND update=r3-s4
vendor=juniper AND product=junos AND version=18.4 AND update=r3-s5
vendor=juniper AND product=junos AND version=18.4 AND update=r3-s6
vendor=juniper AND product=junos AND version=18.4 AND update=r3-s7
vendor=juniper AND product=junos AND version=18.4 AND update=r3-s8
vendor=juniper AND product=junos AND version=18.4 AND update=r3-s9
vendor=juniper AND product=junos AND version=19.1 AND update=-
vendor=juniper AND product=junos AND version=19.1 AND update=r1
vendor=juniper AND product=junos AND version=19.1 AND update=r1-s1
vendor=juniper AND product=junos AND version=19.1 AND update=r1-s2
vendor=juniper AND product=junos AND version=19.1 AND update=r1-s3
vendor=juniper AND product=junos AND version=19.1 AND update=r1-s4
vendor=juniper AND product=junos AND version=19.1 AND update=r1-s5
vendor=juniper AND product=junos AND version=19.1 AND update=r1-s6
vendor=juniper AND product=junos AND version=19.1 AND update=r2
vendor=juniper AND product=junos AND version=19.1 AND update=r2-s1
vendor=juniper AND product=junos AND version=19.1 AND update=r2-s2
vendor=juniper AND product=junos AND version=19.1 AND update=r3
vendor=juniper AND product=junos AND version=19.1 AND update=r3-s1
vendor=juniper AND product=junos AND version=19.1 AND update=r3-s2
vendor=juniper AND product=junos AND version=19.1 AND update=r3-s3
vendor=juniper AND product=junos AND version=19.1 AND update=r3-s4
vendor=juniper AND product=junos AND version=19.1 AND update=r3-s5
vendor=juniper AND product=junos AND version=19.1 AND update=r3-s6
vendor=juniper AND product=junos AND version=19.2 AND update=-
vendor=juniper AND product=junos AND version=19.2 AND update=r1
vendor=juniper AND product=junos AND version=19.2 AND update=r1-s1
vendor=juniper AND product=junos AND version=19.2 AND update=r1-s2
vendor=juniper AND product=junos AND version=19.2 AND update=r1-s3
vendor=juniper AND product=junos AND version=19.2 AND update=r1-s4
vendor=juniper AND product=junos AND version=19.2 AND update=r1-s5
vendor=juniper AND product=junos AND version=19.2 AND update=r1-s6
vendor=juniper AND product=junos AND version=19.2 AND update=r1-s7
vendor=juniper AND product=junos AND version=19.2 AND update=r2
vendor=juniper AND product=junos AND version=19.2 AND update=r2-s1
vendor=juniper AND product=junos AND version=19.2 AND update=r3
vendor=juniper AND product=junos AND version=19.2 AND update=r3-s1
vendor=juniper AND product=junos AND version=19.2 AND update=r3-s2
vendor=juniper AND product=junos AND version=19.2 AND update=r3-s3
vendor=juniper AND product=junos AND version=19.3 AND update=-
vendor=juniper AND product=junos AND version=19.3 AND update=r1
vendor=juniper AND product=junos AND version=19.3 AND update=r1-s1
vendor=juniper AND product=junos AND version=19.3 AND update=r2
vendor=juniper AND product=junos AND version=19.3 AND update=r2-s1
vendor=juniper AND product=junos AND version=19.3 AND update=r2-s2
vendor=juniper AND product=junos AND version=19.3 AND update=r2-s3
vendor=juniper AND product=junos AND version=19.3 AND update=r2-s4
vendor=juniper AND product=junos AND version=19.3 AND update=r2-s5
vendor=juniper AND product=junos AND version=19.3 AND update=r2-s6
vendor=juniper AND product=junos AND version=19.3 AND update=r3
vendor=juniper AND product=junos AND version=19.3 AND update=r3-s1
vendor=juniper AND product=junos AND version=19.3 AND update=r3-s2
vendor=juniper AND product=junos AND version=19.3 AND update=r3-s3
vendor=juniper AND product=junos AND version=19.4 AND update=-
vendor=juniper AND product=junos AND version=19.4 AND update=r1
vendor=juniper AND product=junos AND version=19.4 AND update=r1-s1
vendor=juniper AND product=junos AND version=19.4 AND update=r1-s2
vendor=juniper AND product=junos AND version=19.4 AND update=r1-s3
vendor=juniper AND product=junos AND version=19.4 AND update=r1-s4
vendor=juniper AND product=junos AND version=19.4 AND update=r2
vendor=juniper AND product=junos AND version=19.4 AND update=r2-s1
vendor=juniper AND product=junos AND version=19.4 AND update=r2-s2
vendor=juniper AND product=junos AND version=19.4 AND update=r2-s3
vendor=juniper AND product=junos AND version=19.4 AND update=r2-s4
vendor=juniper AND product=junos AND version=19.4 AND update=r3
vendor=juniper AND product=junos AND version=19.4 AND update=r3-s1
vendor=juniper AND product=junos AND version=19.4 AND update=r3-s2
vendor=juniper AND product=junos AND version=19.4 AND update=r3-s3
vendor=juniper AND product=junos AND version=19.4 AND update=r3-s4
vendor=juniper AND product=junos AND version=19.4 AND update=r3-s5
vendor=juniper AND product=junos AND version=20.1 AND update=-
vendor=juniper AND product=junos AND version=20.1 AND update=r1
vendor=juniper AND product=junos AND version=20.1 AND update=r1-s1
vendor=juniper AND product=junos AND version=20.1 AND update=r1-s2
vendor=juniper AND product=junos AND version=20.1 AND update=r1-s3
vendor=juniper AND product=junos AND version=20.1 AND update=r1-s4
vendor=juniper AND product=junos AND version=20.1 AND update=r2
vendor=juniper AND product=junos AND version=20.1 AND update=r2-s1
vendor=juniper AND product=junos AND version=20.1 AND update=r2-s2
vendor=juniper AND product=junos AND version=20.1 AND update=r3
vendor=juniper AND product=junos AND version=20.1 AND update=r3-s1
vendor=juniper AND product=junos AND version=20.2 AND update=-
vendor=juniper AND product=junos AND version=20.2 AND update=r1
vendor=juniper AND product=junos AND version=20.2 AND update=r1-s1
vendor=juniper AND product=junos AND version=20.2 AND update=r1-s2
vendor=juniper AND product=junos AND version=20.2 AND update=r1-s3
vendor=juniper AND product=junos AND version=20.2 AND update=r2
vendor=juniper AND product=junos AND version=20.2 AND update=r2-s1
vendor=juniper AND product=junos AND version=20.2 AND update=r2-s2
vendor=juniper AND product=junos AND version=20.2 AND update=r2-s3
vendor=juniper AND product=junos AND version=20.2 AND update=r3
vendor=juniper AND product=junos AND version=20.2 AND update=r3-s1
vendor=juniper AND product=junos AND version=20.2 AND update=r3-s2
vendor=juniper AND product=junos AND version=20.3 AND update=-
vendor=juniper AND product=junos AND version=20.3 AND update=r1
vendor=juniper AND product=junos AND version=20.3 AND update=r1-s1
vendor=juniper AND product=junos AND version=20.3 AND update=r2
vendor=juniper AND product=junos AND version=20.3 AND update=r2-s1
vendor=juniper AND product=junos AND version=20.3 AND update=r3
vendor=juniper AND product=junos AND version=20.4 AND update=-
vendor=juniper AND product=junos AND version=20.4 AND update=r1
vendor=juniper AND product=junos AND version=20.4 AND update=r1-s1
vendor=juniper AND product=junos AND version=20.4 AND update=r2
vendor=juniper AND product=junos AND version=20.4 AND update=r2-s1
vendor=juniper AND product=junos AND version=20.4 AND update=r2-s2
vendor=juniper AND product=junos AND version=21.1 AND update=-
vendor=juniper AND product=junos AND version=21.1 AND update=r1
vendor=juniper AND product=junos AND version=21.1 AND update=r1-s1
vendor=juniper AND product=junos AND version=21.1 AND update=r2
vendor=juniper AND product=junos AND version=21.2 AND update=r1
vendor=juniper AND product=junos AND version=21.2 AND update=r1-s1
vendor=juniper AND product=junos AND version=21.2 AND update=r1-s2
OR
vendor=juniper AND product=srx100 AND version=-
vendor=juniper AND product=srx110 AND version=-
vendor=juniper AND product=srx1400 AND version=-
vendor=juniper AND product=srx1500 AND version=-
vendor=juniper AND product=srx210 AND version=-
vendor=juniper AND product=srx220 AND version=-
vendor=juniper AND product=srx240 AND version=-
vendor=juniper AND product=srx240h2 AND version=-
vendor=juniper AND product=srx300 AND version=-
vendor=juniper AND product=srx320 AND version=-
vendor=juniper AND product=srx340 AND version=-
vendor=juniper AND product=srx3400 AND version=-
vendor=juniper AND product=srx345 AND version=-
vendor=juniper AND product=srx3600 AND version=-
vendor=juniper AND product=srx380 AND version=-
vendor=juniper AND product=srx4000 AND version=-
vendor=juniper AND product=srx4100 AND version=-
vendor=juniper AND product=srx4200 AND version=-
vendor=juniper AND product=srx4600 AND version=-
vendor=juniper AND product=srx5000 AND version=-
vendor=juniper AND product=srx5400 AND version=-
vendor=juniper AND product=srx550 AND version=-
vendor=juniper AND product=srx550_hm AND version=-
vendor=juniper AND product=srx550m AND version=-
vendor=juniper AND product=srx5600 AND version=-
vendor=juniper AND product=srx5800 AND version=-
vendor=juniper AND product=srx650 AND version=-
 

Reference

 


Keywords

NVD

 

CVE-2022-22185

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.