CVE-2023-36831

Published Jul 14, 2023

Last updated a year ago

CVSS high 7.5

Overview

Description: An Improper Check or Handling of Exceptional Conditions vulnerability in the UTM (Unified Threat Management) Web-Filtering feature of Juniper Networks Junos OS on SRX Series causes a jbuf memory leak to occur when accessing certain websites, eventually leading to a Denial of Service (DoS) condition. Service restoration is only possible by rebooting the system. The jbuf memory leak only occurs in SSL Proxy and UTM Web-Filtering configurations. Other products, platforms, and configurations are not affected by this vulnerability. This issue affects Juniper Networks Junos OS on SRX Series: 22.2 versions prior to 22.2R3; 22.3 versions prior to 22.3R2-S1, 22.3R3; 22.4 versions prior to 22.4R1-S2, 22.4R2. This issue does not affect Juniper Networks Junos OS versions prior to 22.2R2.
Source: sirt@juniper.net
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

Weaknesses

sirt@juniper.net: CWE-703

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:juniper:vsrx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "36F68E75-E6C6-4DB4-AE0E-C5637ECE7C88"
          },
          {
            "criteria": "cpe:2.3:h:juniper:csrx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "11D4A86D-BDB4-4A01-96FE-7E023C58074B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "561C1113-3D59-4DD9-ADA7-3C9ECC4632EC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "78C6D8A0-92D3-4FD3-BCC1-CC7C87B76317"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "927EAB8B-EC3B-4B12-85B9-5517EBA49A30"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2CEBF85C-736A-4E7D-956A-3E8210D4F70B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CD647C15-A686-4C8F-A766-BC29404C0FED"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "45AB1622-1AED-4CD7-98F1-67779CDFC321"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "89276D88-3B8D-4168-A2CD-0920297485F2"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx240h2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E020556B-693F-4963-BA43-3164AB50FA49"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx240m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AB0D31FF-0812-42B8-B25E-03C35EC1B021"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB5AB24B-2B43-43DD-AE10-F758B4B19F2A"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "80F9DC32-5ADF-4430-B1A6-357D0B29DB78"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8B82D4C4-7A65-409A-926F-33C054DCBFBA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "746C3882-2A5B-4215-B259-EB1FD60C513D"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CE535749-F4CE-4FFA-B23D-BF09C92481E5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DDE64EC0-7E42-43AF-A8FA-1A233BD3E3BC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx380:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2305DA9D-E6BA-48F4-80CF-9E2DE7661B2F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "06A03463-6B1D-4DBA-9E89-CAD5E899B98B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3AA8999C-8AE4-416F-BA2A-B1A21F33B4D7"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CCC5F6F5-4347-49D3-909A-27A3A96D36C9"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "56BA6B86-D3F4-4496-AE46-AC513C6560FA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5ABA347C-3EF3-4F75-B4D1-54590A57C2BC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2FDDC897-747F-44DD-9599-7266F9B5B7B1"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "62FC145A-D477-4C86-89E7-F70F52773801"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx550_hm:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "06685D0E-A075-49A5-9EF4-34F0F795C8C6"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx550m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "52F0B735-8C49-4B08-950A-296C9CDE43CA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "68CA098D-CBE4-4E62-9EC0-43E1B6098710"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "66F474D4-79B6-4525-983C-9A9011BD958B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8AA424D4-4DBF-4E8C-96B8-E37741B5403E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E949B21B-AD62-4022-9088-06313277479E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D862E6F-0D01-4B25-8340-888C30F75A2F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F28F73E-8563-41B9-A313-BBAAD5B57A67"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E37D4694-C80B-475E-AB5B-BB431F59C5E1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5EC0D2D2-4922-4675-8A2C-57A08D7BE334"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9EC91F9D-DEDA-46B4-A39F-59A2CDB86C2E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.3:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19519212-51DD-4448-B115-8A20A40192CC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.3:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CC9909E-AE9F-414D-99B1-83AA04D5297B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.3:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FDE9E767-4713-4EA2-8D00-1382975A4A15"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.3:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59DDA54E-6845-47EB-AE3C-5EC6BD33DFA7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "28E42A41-7965-456B-B0AF-9D3229CE4D4C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB1A77D6-D3AD-481B-979C-8F778530B175"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References