A Missing Synchronization vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on ACX5448 and ACX710 allows an unauthenticated, adjacent malicious user to cause a Denial-of-Service (DoS). If an interface flaps while the system gathers statistics on that interface, two processes simultaneously access a shared resource which leads to a PFE crash and restart. This issue affects Junos OS: * All versions prior to 20.4R3-S9, * 21.2 versions prior to 21.2R3-S5, * 21.3 versions prior to 21.3R3-S5, * 21.4 versions prior to 21.4R3-S4, * 22.1 versions prior to 22.1R3-S2, * 22.2 versions prior to 22.2R3-S2, * 22.3 versions prior to 22.3R2-S2, 22.3R3, * 22.4 versions prior to 22.4R2.
Vulmon