CVE-2023-22415
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
An Out-of-Bounds Write vulnerability in the H.323 ALG of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause Denial of Service (DoS). On all MX Series and SRX Series platform, when H.323 ALG is enabled and specific H.323 packets are received simultaneously, a flow processing daemon (flowd) crash will occur. Continued receipt of these specific packets will cause a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS on MX Series and SRX Series All versions prior to 19.4R3-S10; 20.2 versions prior to 20.2R3-S6; 20.3 versions prior to 20.3R3-S6; 20.4 versions prior to 20.4R3-S5; 21.1 versions prior to 21.1R3-S4; 21.2 versions prior to 21.2R3-S3; 21.3 versions prior to 21.3R3-S3; 21.4 versions prior to 21.4R3; 22.1 versions prior to 22.1R2-S1, 22.1R3; 22.2 versions prior to 22.2R1-S2, 22.2R2.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Juniper Networks | Junos OS | unspecified < 19.4R3-S10 | affected |
| Juniper Networks | Junos OS | 20.2 < 20.2R3-S6 | affected |
| Juniper Networks | Junos OS | 20.3 < 20.3R3-S6 | affected |
| Juniper Networks | Junos OS | 20.4 < 20.4R3-S5 | affected |
| Juniper Networks | Junos OS | 21.1 < 21.1R3-S4 | affected |
| Juniper Networks | Junos OS | 21.2 < 21.2R3-S3 | affected |
| Juniper Networks | Junos OS | 21.3 < 21.3R3-S3 | affected |
| Juniper Networks | Junos OS | 21.4 < 21.4R3 | affected |
| Juniper Networks | Junos OS | 22.1 < 22.1R2-S1, 22.1R3 | affected |
| Juniper Networks | Junos OS | 22.2 < 22.2R1-S2, 22.2R2 | affected |
Weaknesses
- CWE-787: CWE-787 Out-of-bounds Write
- Denial of Service (DoS)
Workarounds
There are no known workarounds for this issue, but it should be considered to disable the H.323 ALG if it's not strictly needed.
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.