CVE-2023-44186

Published: Oct 11, 2023Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

An Improper Handling of Exceptional Conditions vulnerability in AS PATH processing of Juniper Networks Junos OS and Junos OS Evolved allows an attacker to send a BGP update message with an AS PATH containing a large number of 4-byte ASes, leading to a Denial of Service (DoS). Continued receipt and processing of these BGP updates will create a sustained Denial of Service (DoS) condition. This issue is hit when the router has Non-Stop Routing (NSR) enabled, has a non-4-byte-AS capable BGP neighbor, receives a BGP update message with a prefix that includes a long AS PATH containing large number of 4-byte ASes, and has to advertise the prefix towards the non-4-byte-AS capable BGP neighbor. Note: NSR is not supported on the SRX Series and is therefore not affected by this vulnerability. This issue affects: Juniper Networks Junos OS: * All versions prior to 20.4R3-S8; * 21.1 versions 21.1R1 and later; * 21.2 versions prior to 21.2R3-S6; * 21.3 versions prior to 21.3R3-S5; * 21.4 versions prior to 21.4R3-S5; * 22.1 versions prior to 22.1R3-S4; * 22.2 versions prior to 22.2R3-S2; * 22.3 versions prior to 22.3R2-S2, 22.3R3-S1; * 22.4 versions prior to 22.4R2-S1, 22.4R3. Juniper Networks Junos OS Evolved * All versions prior to 20.4R3-S8-EVO; * 21.1 versions 21.1R1-EVO and later; * 21.2 versions prior to 21.2R3-S6-EVO; * 21.3 versions prior to 21.3R3-S5-EVO; * 21.4 versions prior to 21.4R3-S5-EVO; * 22.1 versions prior to 22.1R3-S4-EVO; * 22.2 versions prior to 22.2R3-S2-EVO; * 22.3 versions prior to 22.3R2-S2-EVO, 22.3R3-S1-EVO; * 22.4 versions prior to 22.4R2-S1-EVO, 22.4R3-EVO.

Affected (183)

Products: Juniper: Junos, Junos Os Evolved

Juniper

2 products

Junos

Junos Os Evolved

Configuration A

94 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos	Before 20.4
Juniper Junos	Version 20.4
Juniper Junos	Version 20.4 r1-s1
Juniper Junos	Version 20.4 r1
Juniper Junos	Version 20.4 r2-s1
Juniper Junos	Version 20.4 r2-s2
Juniper Junos	Version 20.4 r2
Juniper Junos	Version 20.4 r3-s1
Juniper Junos	Version 20.4 r3-s2
Juniper Junos	Version 20.4 r3-s3
Juniper Junos	Version 20.4 r3-s4
Juniper Junos	Version 20.4 r3-s5
Juniper Junos	Version 20.4 r3-s6
Juniper Junos	Version 20.4 r3-s7
Juniper Junos	Version 20.4 r3
Juniper Junos	Version 21.1 r1-s1
Juniper Junos	Version 21.1 r1
Juniper Junos	Version 21.1 r2-s1
Juniper Junos	Version 21.1 r2-s2
Juniper Junos	Version 21.1 r2
Juniper Junos	Version 21.1 r3-s1
Juniper Junos	Version 21.1 r3-s2
Juniper Junos	Version 21.1 r3-s3
Juniper Junos	Version 21.1 r3-s4
Juniper Junos	Version 21.1 r3-s5
Juniper Junos	Version 21.1 r3
Juniper Junos	Version 21.2
Juniper Junos	Version 21.2 r1-s1
Juniper Junos	Version 21.2 r1-s2
Juniper Junos	Version 21.2 r1
Juniper Junos	Version 21.2 r2-s1
Juniper Junos	Version 21.2 r2-s2
Juniper Junos	Version 21.2 r2
Juniper Junos	Version 21.2 r3-s1
Juniper Junos	Version 21.2 r3-s2
Juniper Junos	Version 21.2 r3-s3
Juniper Junos	Version 21.2 r3-s4
Juniper Junos	Version 21.2 r3-s5
Juniper Junos	Version 21.2 r3
Juniper Junos	Version 21.3
Juniper Junos	Version 21.3 r1-s1
Juniper Junos	Version 21.3 r1-s2
Juniper Junos	Version 21.3 r1
Juniper Junos	Version 21.3 r2-s1
Juniper Junos	Version 21.3 r2-s2
Juniper Junos	Version 21.3 r2
Juniper Junos	Version 21.3 r3-s1
Juniper Junos	Version 21.3 r3-s2
Juniper Junos	Version 21.3 r3-s3
Juniper Junos	Version 21.3 r3-s4
Juniper Junos	Version 21.3 r3
Juniper Junos	Version 21.4
Juniper Junos	Version 21.4 r1-s1
Juniper Junos	Version 21.4 r1-s2
Juniper Junos	Version 21.4 r1
Juniper Junos	Version 21.4 r2-s1
Juniper Junos	Version 21.4 r2-s2
Juniper Junos	Version 21.4 r2
Juniper Junos	Version 21.4 r3-s1
Juniper Junos	Version 21.4 r3-s2
Juniper Junos	Version 21.4 r3-s3
Juniper Junos	Version 21.4 r3-s4
Juniper Junos	Version 21.4 r3
Juniper Junos	Version 22.1 r1-s1
Juniper Junos	Version 22.1 r1-s2
Juniper Junos	Version 22.1 r1
Juniper Junos	Version 22.1 r2-s1
Juniper Junos	Version 22.1 r2-s2
Juniper Junos	Version 22.1 r2
Juniper Junos	Version 22.1 r3-s1
Juniper Junos	Version 22.1 r3-s2
Juniper Junos	Version 22.1 r3-s3
Juniper Junos	Version 22.1 r3
Juniper Junos	Version 22.2 r1-s1
Juniper Junos	Version 22.2 r1-s2
Juniper Junos	Version 22.2 r1
Juniper Junos	Version 22.2 r2-s1
Juniper Junos	Version 22.2 r2-s2
Juniper Junos	Version 22.2 r2
Juniper Junos	Version 22.2 r3-s1
Juniper Junos	Version 22.2 r3
Juniper Junos	Version 22.3 r1-s1
Juniper Junos	Version 22.3 r1-s2
Juniper Junos	Version 22.3 r1
Juniper Junos	Version 22.3 r2-s1
Juniper Junos	Version 22.3 r2
Juniper Junos	Version 22.3 r3
Juniper Junos	Version 22.4 r1-s1
Juniper Junos	Version 22.4 r1-s2
Juniper Junos	Version 22.4 r1
Juniper Junos	Version 22.4 r2
Juniper Junos	Version 23.1 r1
Juniper Junos	Version 23.2 r1-s1
Juniper Junos	Version 23.2 r1

Configuration B

89 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos Os Evolved	Before 20.4
Juniper Junos Os Evolved	Version 20.4
Juniper Junos Os Evolved	Version 20.4 r1-s1
Juniper Junos Os Evolved	Version 20.4 r1-s2
Juniper Junos Os Evolved	Version 20.4 r1
Juniper Junos Os Evolved	Version 20.4 r2-s1
Juniper Junos Os Evolved	Version 20.4 r2-s2
Juniper Junos Os Evolved	Version 20.4 r2-s3
Juniper Junos Os Evolved	Version 20.4 r2
Juniper Junos Os Evolved	Version 20.4 r3-s1
Juniper Junos Os Evolved	Version 20.4 r3-s2
Juniper Junos Os Evolved	Version 20.4 r3-s3
Juniper Junos Os Evolved	Version 20.4 r3-s4
Juniper Junos Os Evolved	Version 20.4 r3-s5
Juniper Junos Os Evolved	Version 20.4 r3-s6
Juniper Junos Os Evolved	Version 20.4 r3-s7
Juniper Junos Os Evolved	Version 20.4 r3
Juniper Junos Os Evolved	Version 21.1
Juniper Junos Os Evolved	Version 21.1 r1-s1
Juniper Junos Os Evolved	Version 21.1 r1
Juniper Junos Os Evolved	Version 21.1 r2
Juniper Junos Os Evolved	Version 21.1 r3-s1
Juniper Junos Os Evolved	Version 21.1 r3-s2
Juniper Junos Os Evolved	Version 21.1 r3-s3
Juniper Junos Os Evolved	Version 21.1 r3
Juniper Junos Os Evolved	Version 21.2
Juniper Junos Os Evolved	Version 21.2 r1-s1
Juniper Junos Os Evolved	Version 21.2 r1-s2
Juniper Junos Os Evolved	Version 21.2 r1
Juniper Junos Os Evolved	Version 21.2 r2-s1
Juniper Junos Os Evolved	Version 21.2 r2-s2
Juniper Junos Os Evolved	Version 21.2 r2
Juniper Junos Os Evolved	Version 21.2 r3-s1
Juniper Junos Os Evolved	Version 21.2 r3-s2
Juniper Junos Os Evolved	Version 21.2 r3-s3
Juniper Junos Os Evolved	Version 21.2 r3-s4
Juniper Junos Os Evolved	Version 21.2 r3-s5
Juniper Junos Os Evolved	Version 21.2 r3
Juniper Junos Os Evolved	Version 21.3
Juniper Junos Os Evolved	Version 21.3 r1-s1
Juniper Junos Os Evolved	Version 21.3 r1
Juniper Junos Os Evolved	Version 21.3 r2-s1
Juniper Junos Os Evolved	Version 21.3 r2-s2
Juniper Junos Os Evolved	Version 21.3 r2
Juniper Junos Os Evolved	Version 21.3 r3-s1
Juniper Junos Os Evolved	Version 21.3 r3-s2
Juniper Junos Os Evolved	Version 21.3 r3-s3
Juniper Junos Os Evolved	Version 21.3 r3-s4
Juniper Junos Os Evolved	Version 21.3 r3
Juniper Junos Os Evolved	Version 21.4
Juniper Junos Os Evolved	Version 21.4 r1-s1
Juniper Junos Os Evolved	Version 21.4 r1-s2
Juniper Junos Os Evolved	Version 21.4 r1
Juniper Junos Os Evolved	Version 21.4 r2-s1
Juniper Junos Os Evolved	Version 21.4 r2-s2
Juniper Junos Os Evolved	Version 21.4 r2
Juniper Junos Os Evolved	Version 21.4 r3-s1
Juniper Junos Os Evolved	Version 21.4 r3-s2
Juniper Junos Os Evolved	Version 21.4 r3-s3
Juniper Junos Os Evolved	Version 21.4 r3-s4
Juniper Junos Os Evolved	Version 21.4 r3
Juniper Junos Os Evolved	Version 22.1 r1-s1
Juniper Junos Os Evolved	Version 22.1 r1-s2
Juniper Junos Os Evolved	Version 22.1 r1
Juniper Junos Os Evolved	Version 22.1 r2-s1
Juniper Junos Os Evolved	Version 22.1 r2
Juniper Junos Os Evolved	Version 22.1 r3-s1
Juniper Junos Os Evolved	Version 22.1 r3-s2
Juniper Junos Os Evolved	Version 22.1 r3-s3
Juniper Junos Os Evolved	Version 22.1 r3
Juniper Junos Os Evolved	Version 22.2 r1-s1
Juniper Junos Os Evolved	Version 22.2 r1
Juniper Junos Os Evolved	Version 22.2 r2-s1
Juniper Junos Os Evolved	Version 22.2 r2-s2
Juniper Junos Os Evolved	Version 22.2 r2
Juniper Junos Os Evolved	Version 22.2 r3-s1
Juniper Junos Os Evolved	Version 22.2 r3
Juniper Junos Os Evolved	Version 22.3 r1-s1
Juniper Junos Os Evolved	Version 22.3 r1-s2
Juniper Junos Os Evolved	Version 22.3 r1
Juniper Junos Os Evolved	Version 22.3 r2-s1
Juniper Junos Os Evolved	Version 22.3 r2
Juniper Junos Os Evolved	Version 22.4 r1-s1
Juniper Junos Os Evolved	Version 22.4 r1-s2
Juniper Junos Os Evolved	Version 22.4 r1
Juniper Junos Os Evolved	Version 22.4 r2
Juniper Junos Os Evolved	Version 23.2
Juniper Junos Os Evolved	Version 23.2 r1-s1
Juniper Junos Os Evolved	Version 23.2 r1

Related CWEs

CWE-755

Improper Handling of Exceptional Conditions

The product does not handle or incorrectly handles an exceptional condition.

References (2)

https://supportportal.juniper.net/JSA73150

Source: sirt@juniper.net

MitigationVendor Advisory

https://supportportal.juniper.net/JSA73150

Source: af854a3a-2127-422b-91ae-364da2661108

MitigationVendor Advisory

Timeline

No history available yet.