An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based, malicious user to cause Denial of Service (DoS). A PFE crash will happen when a GPRS Tunnel Protocol (GTP) packet is received with a malformed field in the IP header of GTP encapsulated General Packet Radio Services (GPRS) traffic. The packet needs to match existing state which is outside the attackers control, so the issue cannot be directly exploited. The issue will only be observed when endpoint address validation is enabled. This issue affects Juniper Networks Junos OS on SRX Series: 20.2 versions before 20.2R3-S5; 20.3 versions before 20.3R3-S4; 20.4 versions before 20.4R3-S3; 21.1 versions before 21.1R3-S2; 21.2 versions before 21.2R3-S1; 21.3 versions before 21.3R3; 21.4 versions before 21.4R1-S2, 21.4R2; 22.1 versions before 22.1R1-S1, 22.1R2. This issue does not affect Juniper Networks Junos OS versions before 20.2R1.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
juniper junos 20.2 |
||
juniper junos 20.3 |
||
juniper junos 20.4 |
||
juniper junos 21.2 |
||
juniper junos 21.1 |
||
juniper junos 22.1 |
||
juniper junos 21.4 |
||
juniper junos 21.3 |
Vulmon