CVE-2022-22197
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
An Operation on a Resource after Expiration or Release vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker with an established BGP session to cause a Denial of Service (DoS). This issue occurs when proxy-generate route-target filtering is enabled, and certain proxy-route add and delete events are happening. This issue affects: Juniper Networks Junos OS All versions prior to 17.3R3-S11; 17.4 versions prior to 17.4R2-S13, 17.4R3-S4; 18.3 versions prior to 18.3R3-S4; 18.4 versions prior to 18.4R1-S8, 18.4R2-S8, 18.4R3-S6; 19.1 versions prior to 19.1R3-S4; 19.2 versions prior to 19.2R1-S6, 19.2R3-S2; 19.3 versions prior to 19.3R2-S6, 19.3R3-S1; 19.4 versions prior to 19.4R1-S4, 19.4R2-S4, 19.4R3; 20.1 versions prior to 20.1R2; 20.2 versions prior to 20.2R2; 20.3 versions prior to 20.3R1-S2, 20.3R2. Juniper Networks Junos OS Evolved All versions prior to 20.1R3-EVO; 20.2 versions prior to 20.2R3-EVO; 20.3 versions prior to 20.3R2-EVO.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Juniper Networks | Junos OS | unspecified < 17.3R3-S11 | affected |
| Juniper Networks | Junos OS | 17.4 < 17.4R2-S13, 17.4R3-S4 | affected |
| Juniper Networks | Junos OS | 18.3 < 18.3R3-S4 | affected |
| Juniper Networks | Junos OS | 18.4 < 18.4R1-S8, 18.4R2-S8, 18.4R3-S6 | affected |
| Juniper Networks | Junos OS | 19.1 < 19.1R3-S4 | affected |
| Juniper Networks | Junos OS | 19.2 < 19.2R1-S6, 19.2R3-S2 | affected |
| Juniper Networks | Junos OS | 19.3 < 19.3R2-S6, 19.3R3-S1 | affected |
| Juniper Networks | Junos OS | 19.4 < 19.4R1-S4, 19.4R2-S4, 19.4R3 | affected |
| Juniper Networks | Junos OS | 20.1 < 20.1R2 | affected |
| Juniper Networks | Junos OS | 20.2 < 20.2R2 | affected |
| Juniper Networks | Junos OS | 20.3 < 20.3R1-S2, 20.3R2 | affected |
| Juniper Networks | Junos OS Evolved | unspecified < 20.1R3-EVO | affected |
| Juniper Networks | Junos OS Evolved | 20.2 < 20.2R3-EVO | affected |
| Juniper Networks | Junos OS Evolved | 20.3 < 20.3R2-EVO | affected |
Weaknesses
- CWE-672: CWE-672 Operation on a Resource after Expiration or Release
- Denial of Service (DoS)
Workarounds
There are no viable workarounds for this issue.
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.