CVE-2023-44204

Published Oct 13, 2023
Last updated a year ago
CVSS medium 6.5
Overview

Description: An Improper Validation of Syntactic Correctness of Input vulnerability in Routing Protocol Daemon (rpd) Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network based attacker to cause a Denial of Service (DoS). When a malformed BGP UPDATE packet is received over an established BGP session, the rpd crashes and restarts. This issue affects both eBGP and iBGP implementations. This issue affects: Juniper Networks Junos OS * 21.4 versions prior to 21.4R3-S4; * 22.1 versions prior to 22.1R3-S3; * 22.2 versions prior to 22.2R3-S2; * 22.3 versions prior to 22.3R2-S2, 22.3R3; * 22.4 versions prior to 22.4R2-S1, 22.4R3; * 23.2 versions prior to 23.2R1, 23.2R2; Juniper Networks Junos OS Evolved * 21.4 versions prior to 21.4R3-S5-EVO; * 22.1 versions prior to 22.1R3-S3-EVO; * 22.2 versions prior to 22.2R3-S3-EVO; * 22.3 versions prior to 22.3R2-S2-EVO; * 22.4 versions prior to 22.4R3-EVO; * 23.2 versions prior to 23.2R2-EVO;
Source: sirt@juniper.net
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM
Weaknesses

nvd@nist.gov: CWE-20
sirt@juniper.net: CWE-1286
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79ED3CE8-CC57-43AB-9A26-BBC87816062D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4310D2D9-A8A6-48F8-9384-0A0692A1E1C3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9962B01C-C57C-4359-9532-676AB81CE8B0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62178549-B679-4902-BFDB-2993803B7FCE"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9AD697DF-9738-4276-94ED-7B9380CD09F5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09FF5818-0803-4646-A386-D7C645EE58A3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2229FA59-EB24-49A2-85CE-F529A8DE6BA7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CB280D8-C5D8-4B51-A879-496ACCDE4538"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F3F54F1-75B3-400D-A735-2C27C8CEBE79"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "476A49E7-37E9-40F9-BF2D-9BBFFAA1DFFC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A5B196A-2AF1-4AE5-9148-A75A572807BC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B457616-2D91-4913-9A7D-038BBF8F1F66"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F96EBE9-2532-4E35-ABA5-CA68830476A4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.1:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4D936AE-FD74-4823-A824-2D9F24C25BFB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.1:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E117E493-F4E1-4568-88E3-F243C74A2662"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.1:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01E3E308-FD9C-4686-8C35-8472A0E99F0D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.1:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3683A8F5-EE0E-4936-A005-DF7F6B75DED3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.1:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B615DBA-8C53-41D4-B264-D3EED8578471"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.1:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3124DD0-9E42-4896-9060-CB7DD07FC342"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.1:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44F6FD6C-03AF-4D2C-B411-A753DE12A2DA"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.1:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D49FFB60-BA71-4902-9404-E67162919ADC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E949B21B-AD62-4022-9088-06313277479E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D862E6F-0D01-4B25-8340-888C30F75A2F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F28F73E-8563-41B9-A313-BBAAD5B57A67"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E37D4694-C80B-475E-AB5B-BB431F59C5E1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5EC0D2D2-4922-4675-8A2C-57A08D7BE334"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9EC91F9D-DEDA-46B4-A39F-59A2CDB86C2E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "591AA3E6-62A2-4A1A-A04C-E808F71D8B6E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.2:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "786F993E-32CB-492A-A7CC-A7E4F48EA8B9"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.3:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19519212-51DD-4448-B115-8A20A40192CC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.3:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CC9909E-AE9F-414D-99B1-83AA04D5297B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.3:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FDE9E767-4713-4EA2-8D00-1382975A4A15"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.3:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59DDA54E-6845-47EB-AE3C-5EC6BD33DFA7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.3:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "574730B0-56C8-4A03-867B-1737148ED9B1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "28E42A41-7965-456B-B0AF-9D3229CE4D4C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CB1A77D6-D3AD-481B-979C-8F778530B175"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.4:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A064B6B-A99B-4D8D-A62D-B00C7870BC30"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40813417-A938-4F74-A419-8C5188A35486"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:22.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7FC1BA1A-DF0E-4B15-86BA-24C60E546732"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:23.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1B16FF0-900F-4AEE-B670-A537139F6909"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E907193-075E-45BC-9257-9607DB790D71"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B73A41D-3FF5-4E53-83FF-74DF58E0D6C3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEDF46A8-FC3A-4779-B695-2CA11D045AEB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "39809219-9F87-4583-9DAD-9415DD320B36"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB299492-A919-4EBA-A62A-B3CF02FC0A95"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74ED0939-D5F8-4334-9838-40F29DE3597F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6937069-8C19-4B01-8415-ED7E9EAE2CE2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97DB6DD5-F5DD-4AE1-AF2F-8DB9E18FF882"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "21DF05B8-EF7E-422F-8831-06904160714C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "492FCE45-68A1-4378-85D4-C4034FE0D836"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "522114CC-1505-4205-B4B8-797DE1BD833B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C9D664AB-0FA7-49C7-B6E1-69C77652FBEF"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "750FE748-82E7-4419-A061-2DEA26E35309"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.1:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "236E23E5-8B04-4081-9D97-7300DF284000"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.1:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FC96EA7-90A7-4838-B95D-60DBC88C7BC7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.1:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97541867-C52F-40BB-9AAE-7E87ED23D789"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.1:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "85CF6664-E35A-4E9B-95C0-CDC91F7F331A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.1:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E048A05D-882F-4B1C-BA32-3BBA3FEA31A3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.1:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47E8D51D-1424-4B07-B036-E3E195F21AC2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.1:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F3C82ED-5728-406F-ACF6-D7411B0AB6C0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D77A072D-350A-42F2-8324-7D3AC1711BF9"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83AE395C-A651-4568-88E3-3600544BF799"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.2:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3BE1FD4-DAD9-4357-A2E9-20E5826B0D5C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81CC3480-4B65-4588-8D46-FA80A8F6D143"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7E76F5F-DB37-4B7F-9247-3CEB4EBD7696"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.2:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C63DBEE5-B0C2-498F-A672-B6596C89B0A2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9370C46D-3AA1-4562-B67F-DF6EA10F209B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1FD8C240-A7FE-4FD5-ADCC-289C1BC461BF"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.3:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "433631CA-3AC4-4D66-9B46-AEA4209347F1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E4CD8AD-277A-4FC5-A102-3E151060C216"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4BC09BAC-83E7-48CE-B571-ED49277B2987"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.3:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA4481D2-F693-48A5-8DBC-E86430987A25"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.3:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "136CA584-2475-4A14-9771-F367180201D4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93887799-F62C-4A4A-BCF5-004D0B4D4154"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62C473D2-2612-4480-82D8-8A24D0687BBD"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.4:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7FB4C5CA-A709-4B13-A9E0-372098A72AD3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04CE952D-E3C1-4B34-9E65-EC52BFE887AB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AE9D1A7-4721-4E1D-B965-FDC38126B1DD"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8643AA3-29EF-48A7-B033-CB60988E214B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.2:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6DEAA7FD-385F-4221-907E-65ABC16BE4BE"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DDEC008A-3137-48D1-8ABC-6DB0EFC40E50"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "558D234D-BC50-415F-86D6-8E19D6C3ACE0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References
