Denial of service in Junos OS Evolved IPv6 handling
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2022-22227 |
| CWE-ID | CWE-755 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Junos OS Evolved Operating systems & Components / Operating system |
| Vendor | Juniper Networks, Inc. |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Improper handling of exceptional conditions
EUVDB-ID: #VU68328
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-22227
CWE-ID:
CWE-755 - Improper Handling of Exceptional Conditions
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper handling of errors in the Packet Forwarding Engine (PFE) when processing IPv6 transit traffic. A remote attacker can send specially crafted input through the device and cause increased CPU utilization, which can result in denial of service (DoS).
MitigationInstall updates from vendor's website.
Vulnerable software versionsJunos OS Evolved: 21.1-EVO - 22.1-EVO
CPE2.3- cpe:2.3:o:juniper_networks:junos_os_evolved:21.1:*:*:*:*:*:*:*
- cpe:2.3:o:juniper_networks:junos_os_evolved:21.2R3-S1-EVO:*:*:*:*:*:*:*
- cpe:2.3:o:juniper_networks:junos_os_evolved:21.3R2-S2-EVO:*:*:*:*:*:*:*
- cpe:2.3:o:juniper_networks:junos_os_evolved:21.4R1-EVO:*:*:*:*:*:*:*
- cpe:2.3:o:juniper_networks:junos_os_evolved:22.1-EVO:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
