Published: 14/04/2022 Updated: 21/04/2022

CVSS v2 Base Score: 4.7 | Impact Score: 6.9 | Exploitability Score: 3.4

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 419

Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C

An Improper Handling of Unexpected Data Type vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privileges to cause a Denial of Service (DoS). Continued execution of this command might cause a sustained Denial of Service condition. If BGP rib sharding is configured and a certain CLI command is executed the rpd process can crash. During the rpd crash and restart, the routing protocols might be impacted and traffic disruption might be seen due to the loss of routing information. This issue affects: Juniper Networks Junos OS 20.3 versions before 20.3R3-S1; 20.4 versions before 20.4R3; 21.1 versions before 21.1R3; 21.2 versions before 21.2R2. Juniper Networks Junos OS Evolved 20.4 versions before 20.4R3-EVO; 21.1 versions before 21.1R3-EVO; 21.2 versions before 21.2R2-EVO. This issue does not affect: Juniper Networks Junos OS versions before 20.3R1. Juniper Networks Junos OS Evolved versions before 20.3R1-EVO.

Vulnerable Product	Search on Vulmon	Subscribe to Product
juniper junos 20.3
juniper junos 20.4
juniper junos 21.1
juniper junos 21.2
juniper junos os evolved 20.4
juniper junos os evolved 21.1
juniper junos os evolved 21.2

CWE-241 https://kb.juniper.net/JSA69503 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-22193

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect