Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 13/10/2023 Updated: 24/10/2023

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 0

An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the NetworkStack agent daemon (nsagentd) of Juniper Networks Junos OS Evolved allows an unauthenticated network based malicious user to cause limited impact to the availability of the system. If specific packets reach the Routing-Engine (RE) these will be processed normally even if firewall filters are in place which should have prevented this. This can lead to a limited, increased consumption of resources resulting in a Denial-of-Service (DoS), and unauthorized access. CVE-2023-44196 is a prerequisite for this issue. This issue affects Juniper Networks Junos OS Evolved: * 21.3-EVO versions before 21.3R3-S5-EVO; * 21.4-EVO versions before 21.4R3-S4-EVO; * 22.1-EVO version 22.1R1-EVO and later; * 22.2-EVO version 22.2R1-EVO and later; * 22.3-EVO versions before 22.3R2-S2-EVO, 22.3R3-S1-EVO; * 22.4-EVO versions before 22.4R3-EVO. This issue doesn't not affected Junos OS Evolved versions before 21.3R1-EVO.

Vulnerable Product	Search on Vulmon	Subscribe to Product
juniper junos os evolved 21.4
juniper junos os evolved 22.2
juniper junos os evolved 22.3
juniper junos os evolved 22.4
juniper junos os evolved 23.1
juniper junos os evolved 23.2
juniper junos os evolved 22.1

NVD-CWE-Other https://supportportal.juniper.net/JSA73160 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-44195

Vulnerability Summary

References

Vulmon Search

About

Products

Connect