CVE-2022-22240

Published: Oct 18, 2022Modified: Nov 21, 2024

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: sirt@juniper.net (Secondary)

Description

An Allocation of Resources Without Limits or Throttling and a Missing Release of Memory after Effective Lifetime vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated low privileged attacker to cause a Denial of Sevice (DoS). In a high-scaled BGP routing environment with rib-sharding enabled, two issues may occur when executing a specific CLI command. One is a memory leak issue with rpd where the leak rate is not constant, and the other is a temporary spike in rpd memory usage during command execution. This issue affects: Juniper Networks Junos OS 19.4 versions prior to 19.4R3-S9; 20.2 versions prior to 20.2R3-S5; 20.3 versions prior to 20.3R3-S2; 20.4 versions prior to 20.4R3-S1; 21.1 versions prior to 21.1R3; 21.2 versions prior to 21.2R1-S2, 21.2R2-S1, 21.2R3; 21.3 versions prior to 21.3R2. Juniper Networks Junos OS Evolved All versions prior to 20.4R3-S1-EVO; 21.1-EVO version 21.1R1-EVO and later versions; 21.2-EVO versions prior to 21.2R1-S2-EVO, 21.2R3-EVO; 21.3-EVO versions prior to 21.3R2-EVO. This issue does not affect Juniper Networks Junos OS versions prior to 19.2R1.

Affected (89)

Products: Juniper: Junos, Junos Os Evolved

Juniper

2 products

Junos

Junos Os Evolved

Configuration A

65 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Version 19.4
Juniper Junos	Version 19.4 r1-s1
Juniper Junos	Version 19.4 r1-s2
Juniper Junos	Version 19.4 r1-s3
Juniper Junos	Version 19.4 r1-s4
Juniper Junos	Version 19.4 r1
Juniper Junos	Version 19.4 r2-s1
Juniper Junos	Version 19.4 r2-s2
Juniper Junos	Version 19.4 r2-s3
Juniper Junos	Version 19.4 r2-s4
Juniper Junos	Version 19.4 r2-s5
Juniper Junos	Version 19.4 r2-s6
Juniper Junos	Version 19.4 r2
Juniper Junos	Version 19.4 r3-s1
Juniper Junos	Version 19.4 r3-s2
Juniper Junos	Version 19.4 r3-s3
Juniper Junos	Version 19.4 r3-s4
Juniper Junos	Version 19.4 r3-s5
Juniper Junos	Version 19.4 r3-s6
Juniper Junos	Version 19.4 r3-s7
Juniper Junos	Version 19.4 r3-s8
Juniper Junos	Version 19.4 r3
Juniper Junos	Version 20.2
Juniper Junos	Version 20.2 r1-s1
Juniper Junos	Version 20.2 r1-s2
Juniper Junos	Version 20.2 r1-s3
Juniper Junos	Version 20.2 r1
Juniper Junos	Version 20.2 r2-s1
Juniper Junos	Version 20.2 r2-s2
Juniper Junos	Version 20.2 r2-s3
Juniper Junos	Version 20.2 r2
Juniper Junos	Version 20.2 r3-s1
Juniper Junos	Version 20.2 r3-s2
Juniper Junos	Version 20.2 r3-s3
Juniper Junos	Version 20.2 r3-s4
Juniper Junos	Version 20.2 r3
Juniper Junos	Version 20.3
Juniper Junos	Version 20.3 r1-s1
Juniper Junos	Version 20.3 r1-s2
Juniper Junos	Version 20.3 r1
Juniper Junos	Version 20.3 r2-s1
Juniper Junos	Version 20.3 r2
Juniper Junos	Version 20.3 r3-s1
Juniper Junos	Version 20.3 r3
Juniper Junos	Version 20.4
Juniper Junos	Version 20.4 r1-s1
Juniper Junos	Version 20.4 r1
Juniper Junos	Version 20.4 r2-s1
Juniper Junos	Version 20.4 r2-s2
Juniper Junos	Version 20.4 r2
Juniper Junos	Version 20.4 r3
Juniper Junos	Version 21.1
Juniper Junos	Version 21.1 r1-s1
Juniper Junos	Version 21.1 r1
Juniper Junos	Version 21.1 r2-s1
Juniper Junos	Version 21.1 r2-s2
Juniper Junos	Version 21.1 r2
Juniper Junos	Version 21.2
Juniper Junos	Version 21.2 r1-s1
Juniper Junos	Version 21.2 r1
Juniper Junos	Version 21.2 r2
Juniper Junos	Version 21.3
Juniper Junos	Version 21.3 r1-s1
Juniper Junos	Version 21.3 r1-s2
Juniper Junos	Version 21.3 r1

Configuration B

24 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos Os Evolved	Before 20.4
Juniper Junos Os Evolved	Version 20.4
Juniper Junos Os Evolved	Version 20.4 r1-s1
Juniper Junos Os Evolved	Version 20.4 r1-s2
Juniper Junos Os Evolved	Version 20.4 r1
Juniper Junos Os Evolved	Version 20.4 r2-s1
Juniper Junos Os Evolved	Version 20.4 r2-s2
Juniper Junos Os Evolved	Version 20.4 r2-s3
Juniper Junos Os Evolved	Version 20.4 r2
Juniper Junos Os Evolved	Version 20.4 r3
Juniper Junos Os Evolved	Version 21.1 r1-s1
Juniper Junos Os Evolved	Version 21.1 r1
Juniper Junos Os Evolved	Version 21.1 r2
Juniper Junos Os Evolved	Version 21.1 r3-s1
Juniper Junos Os Evolved	Version 21.1 r3
Juniper Junos Os Evolved	Version 21.2
Juniper Junos Os Evolved	Version 21.2 r1-s1
Juniper Junos Os Evolved	Version 21.2 r1
Juniper Junos Os Evolved	Version 21.2 r2-s1
Juniper Junos Os Evolved	Version 21.2 r2-s2
Juniper Junos Os Evolved	Version 21.2 r2
Juniper Junos Os Evolved	Version 21.3
Juniper Junos Os Evolved	Version 21.3 r1-s1
Juniper Junos Os Evolved	Version 21.3 r1

Related CWEs

CWE-401

Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

CWE-770

Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (2)

https://kb.juniper.net/JSA69896

Source: sirt@juniper.net

Vendor Advisory

https://kb.juniper.net/JSA69896

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.