CVE-2023-22415

Summary

An Out-of-Bounds Write vulnerability in the H.323 ALG of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause Denial of Service (DoS). On all MX Series and SRX Series platform, when H.323 ALG is enabled and specific H.323 packets are received simultaneously, a flow processing daemon (flowd) crash will occur. Continued receipt of these specific packets will cause a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS on MX Series and SRX Series All versions prior to 19.4R3-S10; 20.2 versions prior to 20.2R3-S6; 20.3 versions prior to 20.3R3-S6; 20.4 versions prior to 20.4R3-S5; 21.1 versions prior to 21.1R3-S4; 21.2 versions prior to 21.2R3-S3; 21.3 versions prior to 21.3R3-S3; 21.4 versions prior to 21.4R3; 22.1 versions prior to 22.1R2-S1, 22.1R3; 22.2 versions prior to 22.2R1-S2, 22.2R2.

Affected Software

VendorProductVersion RangeStatus
Juniper NetworksJunos OSunspecified < 19.4R3-S10affected
Juniper NetworksJunos OS20.2 < 20.2R3-S6affected
Juniper NetworksJunos OS20.3 < 20.3R3-S6affected
Juniper NetworksJunos OS20.4 < 20.4R3-S5affected
Juniper NetworksJunos OS21.1 < 21.1R3-S4affected
Juniper NetworksJunos OS21.2 < 21.2R3-S3affected
Juniper NetworksJunos OS21.3 < 21.3R3-S3affected
Juniper NetworksJunos OS21.4 < 21.4R3affected
Juniper NetworksJunos OS22.1 < 22.1R2-S1, 22.1R3affected
Juniper NetworksJunos OS22.2 < 22.2R1-S2, 22.2R2affected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write
  • Denial of Service (DoS)

Workarounds

There are no known workarounds for this issue, but it should be considered to disable the H.323 ALG if it's not strictly needed.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References